ICAEW.com works better with JavaScript enabled.

Data protection and privacy industry press

The Library & Information Service provides a hand-picked collection of industry press articles on data protection as a benefit of ICAEW membership.

If you are unable to access an article, please see our Help and support or contact library@icaew.com

Data classification: what is it and why do you need it

The article explains why data classification is vital to organisations. Topics discussed include tracking of information based on its sensitivity and confidentiality, key elements of a data classification policy, and compliance with regulations such as the General Data Protection Regulation (GDPR). Also mentioned are the basic principles of data management, namely confidentiality, integrity, and access.

High cybersecurity risks demand a proactive defense

The article discusses cybercrime and data breaches, which are considered major threats for accountancy firms. Topics include the increase in incidences of breaches that featured ransomware or extortion since 2018. Some of the major defences that should be considered are also mentioned.

Extreme encryption

Article looks at how a clever form of cryptography allows us to see data without ever looking at it. This could dispel the privacy fears that hobble big data.

US offers concessions on surveillance and privacy as Privacy Shield successor agreed

The article discusses agreement of data privacy framework allowing transatlantic data transfers. The agreement was made after United States offered concessions on surveillance and new rights of redress for European Union citizens. The Trans-Atlantic Data Privacy Framework promises an end to two years of legal uncertainty for companies relied on privacy shield.

Navigating PPL: European businesses plot their next steps into China

Article looks at China's new Personal Information Protection Law and how it impacts European businesses and its similarities and differences with Europe's GDPR

Irish data watchdog calls for 'objective metrics' for regulation of big tech

Article looks at complaints that Ireland's Data Protection Commission (DPC) is failing to stand up to big tech companies which are head quartered in Ireland. The DPC has asked EU regulators to agree on metrics to measure the effectiveness of data protection regulation.

ICO criticises government-backed campaign to delay end-to-end encryption

The article reports that the Information Commissioner's Office (ICO) has stepped into the debate over end-to-end encryption (E2EE), warning that delaying its introduction leaves everyone at risk – including children. It mentions that the privacy watchdog said end-to-end encryption plays an important role in safeguarding privacy and online safety, protecting children from abusers, and is crucial for business services.

Cloud storage compliance pitfalls

Article outlines post-Brexit cloud storage compliance issues that could be an issue for organisations. These include the Data Protection Act 2018, the Payment Card Industry Data Security Standard (PCI DSS) and the Network and Information Systems (NIS) Directive.

The critical first step to data security

The article discusses the essential data security strategies that management accountants can use in applying business performance measurement skills in the identification of key performance indicators (KPI) for data security and classification. Topics include the IBM data showing that data breach average cost stood at 4.24 million dollars in 2020, and the importance of data classification as the foundation of data security.

UK data regulations set for 'common sense' changes

Article reports on the launch of a major conultaion by the Department for Digital, Culture, Media and Sport (DCMS), centring on proposed changes to the UK’s data protection regime in a post-Brexit environment, alongside reforms to the Information Commissioner’s Office (ICO).

Showing 10 of 48 items