The openness of today’s networks provides huge benefits for mobile and collaborative working, but it also poses a major risk to your organization's confidential business data such as customer records, trade secrets, and financial information. Find out more about Data Leakage Prevention (DLP) and how to secure your business data.
Download Four Easy Steps to Email Compliance
Chief Information Officers and IT managers in the highly regulated health and financial industries or in large, publicly traded organizations are usually well aware of what is required for email compliance. For privately held or smaller companies and non-regulated industries, email compliance is often unclear and the apparent complexity and serious consequences for violators can make the task of complying seem daunting. Download now
Data breaches happen nearly every day
We hear about breaches of confidential data nearly every day, with organizations such as TJX, the Government of California and many others making headlines with stories of large amounts of confidential customer information being lost or stolen. HM Revenue and Customs (HMRC) recently admitted to losing the personal details of 25 million child benefit recipients in the UK.
The consequences of lost data
Whether it's a small-scale embarrassment or major financial disruption, there's plenty to worry about when it comes to confidential data leakage.
Depending on the type of data lost, damages can range from tarnished reputations to declining business revenues or staggering financial penalties resulting from fines or lawsuits. Costs can quickly reach into millions of dollars.
The majority of losses are accidental
Data loss commonly occurs via email and mobile data storage devices (including laptops, USB keys and optical media). A total of 95% of such losses are unintentional: for example, someone accidentally chooses the wrong recipient using the mail client's auto-complete feature. Unfortunately, disclaimers about unintended recipients and confidentiality do not minimize the media value of the situation, nor do they truly mitigate legal liability.
Ensuring regulatory compliance
Let's face facts. If a disgruntled employee or ill-intentioned contractor wants to sneak confidential data out of the building, there's little you can do to stop them. The vast majority of malicious data loss does not take place via email; it happens via photocopiers, USB drives and theft of physical property. So no DLP system is perfect.
But there are steps you can take to minimize your exposure and to virtually eliminate any accidental data leakage. To demonstrate compliance with most regulations, it is your responsibility to do at least what your peers are doing, which means you need to minimize exposure as much as possible.
Sophos can help you put a range of solutions in place that will help keep an eye on your organization's confidential data: