Many companies are now completely reliant on the data stored on their network servers, PCs, laptops, mobile devices or in the cloud. Some of this data is likely to contain either personal information and/or confidential company information.
We have a related factsheet which covers the conventional data security considerations.
Here we look at some of the issues to consider when reviewing the security of your computer systems, and how to minimise the risks of data loss within the cloud and where some or all services are outsourced.
Whilst cloud data storage and outsourcing can often be more secure than using internal resources, there are some additional things to bear in mind when some, or all, of your data is not held on-site.
Consider the potentially sensitive and confidential data which is stored in the cloud by your business.
Find out what is happening to data and what controls are in place to prevent accidental or deliberate loss of this information.
So the key question is – If all or some of this data is lost who could be harmed and in what way?
When that is known, then steps to mitigate the risks of data loss must be taken. Here are some steps which can be undertaken to reduce the risk of data loss:-
There are many resources available, but we have included two examples here:-
https://www.cesg.gov.uk/cloud-security-collection
https://ico.org.uk/media/for-organisations/documents/ 1540/ cloud_computing_guidance_for_organisations.pdf
Please contact us if you require help in the following areas: