We’ve all read about them in the media, but what do you do if you experience a data breach?
It is not a time to panic. Don’t rush into takingmthe wrong steps, digging a bigger hole for your business to get out of. Making a rash decision may make the situation worse. We can help you limit the damage to your organisation, your customers, and your reputation.
Data breaches come in all shapes and sizes. Whether it is a small breach involving the loss or disclosure of one person’s information, through to a wide-scale cyber security attack on your key systems. Evolve North’s skills in IT Security and Information Governance can help you contain, manage and learn from these incidents.
Ensuring prompt containment and remediation is key to managing breach or loss. Ongoing communication with the Information Commissioner and Data Subjects helps to ensure you remain compliant with the Data Protection Act and GDPR.
Evolve North can provide breach and incident management, on either an ad-hoc basis or as a monthly subscription assurance service, keeping you safe in the knowledge that at your time of crisis, there is a team of professionals on-hand to support you.
Our consultants have managed multiple breach and loss incidents, including working with the Information Commissioner’s Office and PCI DSS. All have many years of experience in Senior IT Security and Information Governance roles, working within the NHS, Financial Services, Hospitality and Transportation.
But it’s not just about reacting to a breach, Evolve North can help you effectively minimise the chance of incidents and implement effective breach management approaches when they do occur.
We can help you develop effective information risk management programmes to identify where risks may occur, how to mitigate the risks, and effective controls to put in place. This will give you the assurance that you are doing all you can to prevent data breaches occurring in the first place. And, should the worst happen, we can support you in developing effective Data Breach Procedures and Cyber Incident Response Plans so that breaches are handled appropriately and in line with current legislation.
Our breach management service at a glance…
We advise if your breach needs to be reported to the ICO and give guidance when reporting and responding to the ICO and Data Subjects.
Remedial advice is provided for the breach or loss, including hands-on support when needed.
We can help you create effective Breach Policies and Procedures to ensure all staff know how to respond to data breaches.
We support you with the creation and management of effective communication, helping you inform affected data subjects of the potential impact on them, while minimising the potential reputational damage your business may incur.
All organisations are required to report breach or loss of personal data within 72 hours under the UK GDPR.
Failure to do so can result in a significant monetary penalty and further prosecution of the Officers of the business.
Talk to a specialist now – call 01748 905 002.
“Having Evolve North support our board meetings really supported the work we are doing to safeguard our staff and customers”
Head of Operations, European Financial Services.
“Cyber Essentials Plus was essential for us to attain, and the Evolve North team made it possible”
Operations Director, UK Non-Profit
“Given our size, the vDPO service just made sense, as we couldn’t hire this role internally for several years to come”
CTO, UK Marketing Agency
“The Gap Analysis (UK GDPR, ISO 27001 & Cyber Essentials) just made things along clearer and proving our Data Protection roadmap for next 12momths”
Head of IT, Insurance Broker
“We’ve partnered with Evolve North for PCI DSS & ISO7001 support and they’ve always been there when we’ve needed them”
Programme Director, UK Hotel Chain
“They provided clarity across our M365 data and compliance services, our chaotic Microsoft licencing and our complex NHS environment”
Digital & Change Lead, UK NHS Trust
“After pushing through our Cyber Essentials and ISO27001, their quarterly Penetration Testing & Vulnerability scanning just made sense”
CTO, UK Housing Association
“Quick and easy method to get Cyber Essentials. Lots of support when needed”
IT Manager, UK Law Firm
“Just having the annual support days in place, meant we could tackle incidents and third-party onboarding easily”
Director of Tech, UK Hospitality Organisation