Many businesses are having to tighten their in-house policies and systems in preparation for the new GDPR policy coming into play from May 25th, but do you know where telecoms fits into this mix? Here are some things you need to consider before the deadline:
Is your WiFi secure?
An unencrypted WiFi connection between your PC and wireless router can easily be hacked, exposing your data. Whether that is your office WiFi (including guest access) or other WiFi connections your staff use, there is a risk.
Are your mobiles secure?
- Consider any BYOD policies you have for mobile phones, particularly if staff access emails via those phones. This personal data is outside of your control, so poses a risk.
- Do staff charge their phones by plugging them into their PCs and laptops? If the phone in question has a virus or malware that can easily get onto the laptop and then, potentially, on to your network.
- Can you wipe all data from a company mobile if it is lost? If not, you need to investigate this.
- How are the devices locked? Simple pin numbers such as 1234 and 0000 can be easily guessed and the phone accessed.
Are your desk phones secure?
Do staff programme numbers into their desk phones? This could be an issue if a ‘Right To Erasure’ claim comes into your business, as you won’t be able to say with confidence which devices a person’s details are on.
If you don’t have good quality voice calls, your staff may start using other solutions, such as Skype, WhatsApp and IM solutions and you have absolutely no control over how they are used and what personal data is being sent over them.
It is vital now, more than ever, that you have a secure communications platform that adheres with GDPR policy; if you don’t, speak to us.