|Data Protection Act Compliance|
As a business, you have certain key responsibilities in relation to the information which you process.
The Data Protection Acts, 1988 and 2003 in Ireland states that it is the responsibility of the business/company to ensure the security of sensitive data.Section 2(1)(d) of the 1988 Act places an obligation on persons to have appropriate measures in place to prevent "unauthorised access to, or alteration, disclosure or destruction of, the data and against their accidental loss or destruction."
Encrypting your laptop and using our Managed Data Encryption Service ensures that you are fully compliant with this section of the Data Protection Acts. Using our service will show that you have been mindful of the risks and have taken action with due care and attention to comply with the law.
In an example published on the Data Protection Commissioners website, And investigation in relation to the theft of Irish Blood Transfusion Service personal data on a laptop in New York was conducted. In this case their asset was encrypted and the investigation concluded that the measures taken
"were appropriate to the potential harm that might result from inappropriate access to the personal data in question. We are satisfied, based on the information provided, that the key to the encryption software used on the laptop was not stored anywhere on the laptop or elsewhere."
In the above case, the laptop was encrypted and the passphrase was securely stored.
Our Managed Data Encryption Shield service provides you with the same security and peace of mind, as we manage your passphrase and provide you with the necessary training in human factors to ensure that you do not accidently compromise your security. All of these measures meet the requirement of the Data Protection Commissioner and the Irish Data Protection Acts.
For more information on this, please see the Data Protection Commissioners website at http://www.dataprotection.ie