Sprout IT is excited to announce that it we have become a 2021 Data Privacy Champion with the National Cyber Security Alliance to help celebrate Data Privacy Day. This allows the business to continue its commitment of raising awareness about the importance of safeguarding consumer data and assisting with encouraging businesses to cultivate trust among consumers by adopting data privacy frameworks and promoting transparency around data collection practices.
Data Privacy Day is a global effort -- taking place annually on January 28th -- that generates awareness about the importance of privacy, highlights easy ways to protect personal information and reminds organizations that privacy is good for business. This year, we are encouraging individuals to “Own Your Privacy” by learning more about how to protect the valuable data that is online, and encouraging businesses to “Respect Privacy”, which advocates for holding organizations responsible for keeping individuals’ personal information safe from unauthorized access and ensuring fair, relevant and legitimate data collection and processing.
In 2020, 71% of Top 100 UK law firms stated they were “somewhat concerned” or “extremely concerned” about the cyber security threat (PWC, Annual Law Firms’ Survey 2020: Embracing change to succeed). As technology evolves and the pandemic continues to influence how clients interact with legal services, data collection practices are becoming increasingly unavoidable, making it imperative that companies act responsibly.
“In recent years, we’ve seen the impact of more global awareness surrounding the abuse of consumer data, thanks to sweeping privacy measures like GDPR and CPRA,” said Kelvin Coleman, Executive Director, NCSA. “And while legislative backing is key to reinforcing accountability for poor data privacy practices, one major goal of Data Privacy Day is to build awareness among businesses about the benefits of an ethical approach to data privacy measures separate from legal boundaries.”
The National Cyber Security Alliance has offered up the following tips to help guide individuals and businesses to better data privacy practices, such as:
- For Individuals:
- Personal info is like money: Value it. Protect it. Personal information, such as your purchase history, IP address, or location, has tremendous value to businesses – just like money. Make informed decisions about whether or not to share your data with certain businesses by considering the amount of personal information they are asking for, and weighing it against the benefits you may receive in return.
- Keep tabs on your apps. Many apps ask for access to personal information, such as your geographic location, contacts list and photo album, before you can use their services. Be thoughtful about who gets that information, and wary of apps that require access to information that is not required or relevant for the services they are offering. Delete unused apps on your internet-connect devices and keep others secure by performing updates.
- Manage your privacy settings. Check the privacy and security settings on web services and apps and set them to your comfort level for information sharing. Each device, application or browser you use will have different features to limit how and with whom you share information. Get started with NCSA’s Manage Your Privacy Settings page.
- For Businesses:
- If you collect it, protect it. Data breaches can not only lead to great financial loss, but a loss in reputation and customer trust. Follow reasonable security measures to keep individuals’ personal information safe from inappropriate and unauthorized access. Make sure the personal data you collect is processed in a fair manner and only collected for relevant and legitimate purposes.
- Consider adopting a privacy framework. Build privacy into your business by researching and adopting a privacy framework to help you manage risk and create a culture of privacy in your organization.
- Conduct an assessment of your data collection practices. Understand which privacy laws and regulations apply to your business. Educate your employees of their and your organization’s obligations to protecting personal information.
- Transparency builds trust. Be open and honest about how you collect, use and share consumers’ personal information. Think about how the consumer may expect their data to be used and design settings to protect their information by default. Communicate clearly and concisely to the public what privacy means to your organization and the steps you take to achieve and maintain privacy.
- Maintain oversight of partners and vendors. If someone provides services on your behalf, you are also responsible for how they collect and use your consumers’ personal information.
Sprout IT are proud to take part in Data Privacy Day and continue to bring awareness about the importance of data protection and security to our clients and the wider community. We take data very seriously and have created a number of resources to help improve data security within your legal firm. Here are a few to get you started:
- Where is your data? – Legal IT Webinar, This recording featuring experts from Sprout IT, Schillings and Enyo Law, discusses data location, security, protection and recovering in the event of a data breach.
- Data security planning for legal firms
- Data protection – 4 quick fixes to protect your law firms data
- The role of the data protection officer
If you would like more information about data privacy at your legal firm please call us today on 020 7036 8530 or for more information about Data Privacy Day 2021 and how to get involved, visit https://staysafeonline.org/data-privacy-day/.
About Data Privacy Day
Data Privacy Day began in the United States and Canada in January 2008 as an extension of the Data Protection Day celebration in Europe. Data Protection Day commemorates the Jan. 28, 1981, signing of Convention 108, the first legally binding international treaty dealing with privacy and data protection. NCSA, the nation's leading nonprofit, public-private partnership promoting cybersecurity and privacy education and awareness, leads the effort in North America each year. For more information, visit https://staysafeonline.org/data-privacy-day/.
About the National Cyber Security Alliance
NCSA is the Nation’s leading nonprofit, public-private partnership promoting cybersecurity and privacy education and awareness. NCSA works with a broad array of stakeholders in government, industry and civil society. NCSA’s primary partners are the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) and NCSA’s Board of Directors, which includes representatives from ADP; AIG; American Express; Bank of America; Cofense; Comcast Corporation; Eli Lilly and Company; ESET North America; Facebook; Intel Corporation; Lenovo; LogMeIn; Marriott International; Mastercard; MediaPro; Microsoft Corporation; Mimecast; KnowBe4; NortonLifeLock; Proofpoint; Raytheon; Trend Micro, Inc.; Uber: U.S. Bank; Visa and Wells Fargo. NCSA’s core efforts include Cybersecurity Awareness Month (October); Data Privacy Day (Jan. 28); STOP. THINK. CONNECT.™, the global online safety awareness and education campaign co-founded by NCSA and the Anti-Phishing Working Group with federal government leadership from the Department of Homeland Security; and CyberSecure My Business™, which offers webinars, web resources and workshops to help businesses be resistant to and resilient from cyberattacks. For more information on NCSA, please visit https://staysafeonline.org.