National Honesty Day: Transparency
⚖️🛡️ National Honesty Day, although one day to highlight the importance of honesty, it reminds us of how importance truth is in the realms of data protection and cyber security and how it should be part of an organisation's fundamental beliefs and ethos.
⚖️ Lawfulness, Fairness and Transparency: is the core of data protection and demands that processing of personal data must be lawful, fair and transparent to the data subject.
This means being upfront with individuals about what data is being collected, why you are collecting it and how you will use it.
The best way to communicate this is via your privacy notices: Transparency Best Practice Area
✅ Accountability: requires honest record-keeping, clear policies and the willingness to be held accountable when things go wrong.
Customers might want to review our Records Management Best Practice Area.
👁️ Data Subject Rights: under the UK GDPR, individuals have the right to access their data, the right to rectification, right to erasure and the right to restrict processing. Respecting these rights requires honesty in providing the information and fulfilling the requests.
Further information about data subject rights can be found in our Subject Access Best Practice Area.
The connection between honesty, data protection and cyber security is crucial. A lack of honesty, where a cyber incident is concerned, can create significant vulnerabilities:
🎣 Phishing: deception is what makes phishing so successful. Phishing emails, fake websites and social engineering are all forms of digital dishonesty designed to trick individuals. We would also advise encouraging staff to be honest and let the appropriate person know in an organisation if they have clicked on a phishing link and entered any details - it can help stop a cyber incident in its tracks.
😟 Vulnerability Disclosure:being honest about a data breach, whether you have caused one or suffered one, can help resolve the matter and prevent further breaches from happening. Often the immediate reactions is to minimise or hide these kinds of incidents, but breaches should be logged with your DPO and cyber attacks reported to appropriate organisations (depending on your sector) and the ICO. Honest and timely disclosure means that organisations and individuals can take the appropriate steps to protect themselves - it also helps build trust!
Customers can review our Data Breach Best Practice Area.
🫱🏼🫲🏼 Honesty Ethos - having an honest culture in an organisation about cyber security and data protection risks means that staff will feel empowered to report issues without fear of reprisal.
The principles of honesty and transparency in both data protection and cyber security should be a regular and consistent commitment.
Honesty is the best policy!
⚖️ Lawfulness, Fairness and Transparency: is the core of data protection and demands that processing of personal data must be lawful, fair and transparent to the data subject.
This means being upfront with individuals about what data is being collected, why you are collecting it and how you will use it.
The best way to communicate this is via your privacy notices: Transparency Best Practice Area
✅ Accountability: requires honest record-keeping, clear policies and the willingness to be held accountable when things go wrong.
Customers might want to review our Records Management Best Practice Area.
👁️ Data Subject Rights: under the UK GDPR, individuals have the right to access their data, the right to rectification, right to erasure and the right to restrict processing. Respecting these rights requires honesty in providing the information and fulfilling the requests.
Further information about data subject rights can be found in our Subject Access Best Practice Area.
The connection between honesty, data protection and cyber security is crucial. A lack of honesty, where a cyber incident is concerned, can create significant vulnerabilities:
🎣 Phishing: deception is what makes phishing so successful. Phishing emails, fake websites and social engineering are all forms of digital dishonesty designed to trick individuals. We would also advise encouraging staff to be honest and let the appropriate person know in an organisation if they have clicked on a phishing link and entered any details - it can help stop a cyber incident in its tracks.
😟 Vulnerability Disclosure:being honest about a data breach, whether you have caused one or suffered one, can help resolve the matter and prevent further breaches from happening. Often the immediate reactions is to minimise or hide these kinds of incidents, but breaches should be logged with your DPO and cyber attacks reported to appropriate organisations (depending on your sector) and the ICO. Honest and timely disclosure means that organisations and individuals can take the appropriate steps to protect themselves - it also helps build trust!
Customers can review our Data Breach Best Practice Area.
🫱🏼🫲🏼 Honesty Ethos - having an honest culture in an organisation about cyber security and data protection risks means that staff will feel empowered to report issues without fear of reprisal.
The principles of honesty and transparency in both data protection and cyber security should be a regular and consistent commitment.
Honesty is the best policy!