Somebody, somewhere has their eyes on your data. But some of this data is not yours - it belongs to your customers. Rightly so, they expect you to protect it. You have a duty of care to safeguard and nurture their data. Fail in your duty to care for this data and it becomes vulnerable to hackers.
The Oxford Dictionary states ransom as “a sum of money demanded or paid for the release of a captive.” This captive could be your data. Whilst this is not a position you would wish to be in, you would be able to redeem your data through payment of a ransom. But, this is not the only thing that you need to consider. The damage may have already been done to your customer response times, computer networks and balance sheets. Could you redeem your reputation as a business as quickly as a Bitcoin transaction?
“Ransomware causes the NHS to come to a standstill as the attack results in 7000 NHS appointments being cancelled.”
Now imagine your organisation’s name in the title. And it’s not just organisations; The city of Atlanta was brought to a standstill in March due to a similar attack.
Wikipedia defines GDPR as “The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union. It addresses the export of personal data outside the EU. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. When the GDPR takes effect, it will replace the 1995 Data Protection Directive (Directive 95/46/EC).”
GDPR becomes enforceable from 25th May 2018.
Many organisations traditionally have retained data for long periods in backup form as a cheap alternate to using content based archives. Under the new GDPR, fines may be levied if Personally Identifiable Information (PII) cannot be tracked and controlled effectively.
GDPR effects Data Protection in many ways:
In 30 years in the industry, it still surprises me when customers focus purely on backup success as a metric for business recovery. Businesses that fail to test recovery of IT systems have been found to lose significant revenue and market share when disaster strikes.
I was at a customer site recently, discussing their current data protection strategy, when their lead architect stuck his head around the door and asked whether they were encrypting data at rest, and if not, why not?
IBM have been dropping hints for some time now that they have a new product, specifically aimed at recapturing some of that virtual machine backup market. Sure, with Spectrum Protect for Virtual Environments, IBM have a compelling product with state of the art support for virtualised environments, particularly those using vSphere.
One of the news items that’s been bubbling around for a some time is the impact of incoming changes to the interpretation of IR35 legislation.
This has been billed as an attack on ‘White Van Man’ but the impact of a tightening of the interpretation of IR35 legislation in the UK is having a significant effect on the IT sector. Although there was a U-turn on some of the assault on self-employed people from the government, it has left behind a change in the approach and interpretation of IR35.
A single word headline from which everyone in the IT industry in 2017 should know what we’re going to talk about instantly.
We’ve talked about licensing on the blog before, but that was way back in 2013, so it’s about time we revisited it. Why are there 10+ ways to license Spectrum Protect and what are the benefits and pitfalls of each?