Government bodies and agencies around the world have issued new legislation and regulations intending to address how companies handle cybersecurity and personal data. Cybercriminals are leveraging innovative technology every day and the proliferation of sophisticated cybersecurity incidents is costing the global economy $600 Billion, or 0.8% of the global GDP.1 However the impact goes beyond monetary costs and is much harder to define such as the loss of individual privacy and reputational damage to company brands. Despite knowing the risks involved, 32% of organizations still admit to sacrificing mobile security to improve business performance.2
The European Union General Data Protection Regulation (GDPR) is meant to unify data privacy laws across Europe. Its goal is to protect and empower all EU citizens’ data privacy and to reshape the way organizations approach data privacy3. This is not limited to only organizations operating within Europe; all organizations that handle EU citizens’ personal data are subjected to GDPR. Even if your company is based in North America, if you have UK clients, then you need to ensure your company is GDPR compliant by the May 25, 2018 deadline. Or face heavy fines.
With only 90 days until GDPR enforcement – will your company be compliant?
RFA is fully certified as an IASME Certification Body, which means RFA is trained and licensed to certify both the UK’s Cyber Essentials Plus Scheme and the IASME governance standard. As a GDPR expert auditor, RFA offers consultancy services that can help your company achieve a robust governance system and adequately protected data, which meets GDPR regulations.
RFA provides guidance on developing a risk strategy, staff training policy, and advises on how to implement the right security hardware and software infrastructure as well as implementing a well-trained cyber incident response team.
RFA can assess and certify your company for Cyber Essentials and the next level, Cyber Essentials Plus. Contact us today!