How to think differently about dealing with data breaches

members icon

Prevention is important – but how you respond to a breach is vital too

Sports organisations rely on online services, websites and data as much as any other business or charity – and so the rise of data breaches is presenting new challenges.

The Department for Digital, Culture, Media and Sport published a Cyber Security Breaches Survey last year and reported that 43 per cent of businesses and 19 per cent of charities had suffered a breach in the previous 12 months (this figure increases to 72 per cent for larger companies).[1]

Those are significant figures and organisations are coming to terms with the reality that, in the modern world, breaches are almost inevitable.

So, the question is how does behaviour need to change?

Many sports organisations have been working hard on data protection and on preventing breaches. But how many have considered what to do when a breach does happen?

The stakes are high. Just think about how much personal data is held on trust for customers, members and even staff in the sport and recreation sector.

How will those customers react if their information is leaked? How will the reputation of an organisation suffer? And how can reputation and trust be restored?

The truth is a data breach should not be seen as a learning opportunity. There is far too much to lose to get the recovery process wrong.

This is why many organisations are changing their thinking and looking at the issue from another angle.

Choosing an insurance policy which focuses not only on mitigating risk but on providing services and advice to cope with a breach is increasingly popular.

Having one number to call and a breach manager who will arrange forensic computer experts, data expert lawyers and credit monitoring services is hugely valuable.

It helps organisations fight to protect their reputation before members and customers consider leaving.

Cyber attacks may sometimes be beyond a business’ control but responding to a breach is not.

Howden’s Privacy Breach Response Services offers Three Towers of cover:

Tower 1:

  • Computer expert services
  • PCI forensic investigator
  • Legal services
  • Crisis management and public relations

Tower 2:

  • Notification services
  • Call centre services
  • Credit and identity monitoring

Tower 3:

  • Third party information security and privacy coverage
  • Regulatory defence and penalties
  • Website and office media liability
  • Fines, penalties and assessments
  • First party coverage

Speak to Kate Awmack for more details or email her on Kate.Awmack@howdengroup.com.

[1] https://assets.publishing.service.gov.uk/government/uploads/system/uploads/attachment_data/file/702074/Cyber_Security_Breaches_Survey_2018_-_Main_Report.pdf 

Comments

Please login to add comments

  • No comments yet