Encryption Best Practices

Data is a critical part of every organisation, but this most valuable asset often poses a huge risk when it travels or is transmitted beyond your network.

An Overview of Encryption

  • Encryption protects information stored on mobile or static devices and during data transmission.
  • It is a way of safeguarding against unauthorised or unlawful processing of data.
  • There are a number of different encryption options available.
  • Organisations should consider encryption alongside other technical and organisational measures, taking into account the benefits that it can offer.

Encryption Software – Use it or Potentially Face a Fine
 
There have been numerous incidents in the news where personal data has been stolen, lost or subject to unauthorised access. In many of these cases, these were caused by data being inadequately protected or the devices the data was stored on being left in inappropriate places – and in some cases both. The Information Commissioner has formed the view that in future, where such losses occur and where encryption software has not been used to protect the data, regulatory action may be pursued.
 
The Information Commissioner’s Office (ICO), which is the UK’s independent authority that oversees data privacy, recently released a new guidance on encryption best practices. Although encryption of data is not mandatory under UK data protection legislation, the ICO strongly recommends that organisations dealing with personal data use it. This guidance explores use of encryption through a range of practical scenarios to highlight when and where different encryption strategies can help provide a greater level of protection.
 
If you would like to discuss encryption products for the safeguarding of your company’s sensitive data, we would be happy to hear from you.
 
For any questions please contact Vantage IT.