Connecting linkedin

Data Breach - The Which? Data Breach Redress Campaign

6 months ago by Neil Pickstone

W1siziisijiwmtcvmtevmjevmtqvmjgvmjuvmzq3l1njcmvlbibtag90idiwmtctmtetmjegyxqgmtqumjcumzuucg5nil0swyjwiiwidgh1bwiilciymjawedywmfx1mdazyyjdlfsiccisim9wdgltaxplil1d

No sector is more aware than the recruitment industry of the current debate around the GDPR - not just the financial risk it poses to the recruitment sector and its suppliers, but also the impact on every recruitment business’ corporate reputation.

 

What are the problems of data breach?

At Volcanic, we’ve been highlighting for months that the problem of data breach is not just about the fines that can be imposed, but also the impact a loss of candidate data may have on a company's reputation, not to mention the direct cost of providing financial redress to the candidate in case of data loss.

 

Data Protection Bill

So it’s with dismay that we report of a campaign launched at the end of October 2017 by the Which? organisation.

 

Which? is now calling for the Data Protection Bill, which is currently being debated in parliament, to be amended so that independent organisations acting in the public interest can help groups of affected consumers to get collective redress. The call is widely supported by the public, with three quarters of those surveyed saying they would welcome an independent body helping to get redress on a collective basis.

 

What does this mean?

Basically, Which? is supporting an amendment to the new Data Protection Bill whereby consumers can be represented by companies (think PPI) to bring class actions against businesses that have suffered a data breach that can be identified as occurring through negligence.

 

So what’s the risk?

We’ve long known about the business risk that open source software can present. Writing for Computer Weekly, Arif Mohamed has stated:

“The security of open source software is a key concern for organisations planning to implement it as part of their software stack, particularly if it will play a major role.

“The main concern is that because free and open source software (Foss) is built by communities of developers with the source code publicly available, access is also open to hackers and malicious users. As a result, there could be the assumption that Foss is less secure than proprietary applications.

“The issue for anyone running a website collecting data will be about taking reasonable precautions, so it could be argued that choosing open sourced software is negligent in itself given all the evidence about the risks in using it.

The impact of this before the announcement of the GDPR was more of a ‘so what’ but, in a post-GDPR legislative landscape and if Which? gets its way, it could be catastrophic for a recruitment company.

Volcanic is supporting the recruitment industry towards GDPR compliance ahead of the May 2018 deadine. Download your free guide to GDPR for recruitment agencies.

 




 

4 DAYS AGO BY NEIL PICKSTONE

W1siziisijiwmtgvmduvmtqvmtuvndmvndkvny9cscbpbnrlz3jhdglvbi5qcgcixsxbinailcj0ahvtyiisijqwmhgzmdbcdtawm2mixsxbinailcjvchrpbwl6zsjdxq

To further support our clients in meeting their GDPR obligations, Volcanic has launched a new integration with Bullhorn. This new service allows all our Bullhorn clients to integrate their GDPR consents directly and automatically from their websit...

READ MORE

3 MONTHS AGO BY NEIL PICKSTONE

W1siziisijiwmtgvmdivmjivmtevmdcvmzivnti0l3nodxr0zxjzdg9ja18zotkyodg5ntuuanbnil0swyjwiiwidgh1bwiilci0mdb4mzawxhuwmdnjil0swyjwiiwib3b0aw1pemuixv0

In the second in the Volcanic GDPR video series we take a look at GDPR and security. GDPR compliance requires companies to take steps to ensure the ongoing confidentiality, integrity, availability and resilience of their systems, and to document t...

READ MORE

3 MONTHS AGO BY NEIL PICKSTONE

W1siziisijiwmtgvmdivmtkvmtcvmjcvmdevodu4l1dvbwfuigf0ig1hyy5qcgcixsxbinailcj0ahvtyiisijqwmhgzmdbcdtawm2mixsxbinailcjvchrpbwl6zsjdxq

Over the past few months, we’ve been asked many questions about the Volcanic GDPR-compliant Compliance Area featuring the self-service candidate dashboard. Our series of blogs sets out to answer the most frequently asked questions. Here, we respon...

READ MORE

3 MONTHS AGO BY NEIL PICKSTONE

W1siziisijiwmtgvmdivmtkvmtcvmjqvmdyvmzy3l0deufigd2l0acbnyxzlbc5qcgcixsxbinailcj0ahvtyiisijqwmhgzmdbcdtawm2mixsxbinailcjvchrpbwl6zsjdxq

Over the past few months, we’ve been asked many questions about the Volcanic GDPR-compliant Compliance Area featuring the self-service candidate dashboard. Our series of blogs sets out to answer the most frequently asked questions. Here, we answer...

READ MORE