Connecting linkedin

Data Breach - The Which? Data Breach Redress Campaign

8 months ago by Neil Pickstone

W1siziisijiwmtcvmtevmjevmtqvmjgvmjuvmzq3l1njcmvlbibtag90idiwmtctmtetmjegyxqgmtqumjcumzuucg5nil0swyjwiiwidgh1bwiilciymjawedywmfx1mdazyyjdlfsiccisim9wdgltaxplil1d

No sector is more aware than the recruitment industry of the current debate around the GDPR - not just the financial risk it poses to the recruitment sector and its suppliers, but also the impact on every recruitment business’ corporate reputation.

 

What are the problems of data breach?

At Volcanic, we’ve been highlighting for months that the problem of data breach is not just about the fines that can be imposed, but also the impact a loss of candidate data may have on a company's reputation, not to mention the direct cost of providing financial redress to the candidate in case of data loss.

 

Data Protection Bill

So it’s with dismay that we report of a campaign launched at the end of October 2017 by the Which? organisation.

 

Which? is now calling for the Data Protection Bill, which is currently being debated in parliament, to be amended so that independent organisations acting in the public interest can help groups of affected consumers to get collective redress. The call is widely supported by the public, with three quarters of those surveyed saying they would welcome an independent body helping to get redress on a collective basis.

 

What does this mean?

Basically, Which? is supporting an amendment to the new Data Protection Bill whereby consumers can be represented by companies (think PPI) to bring class actions against businesses that have suffered a data breach that can be identified as occurring through negligence.

 

So what’s the risk?

We’ve long known about the business risk that open source software can present. Writing for Computer Weekly, Arif Mohamed has stated:

“The security of open source software is a key concern for organisations planning to implement it as part of their software stack, particularly if it will play a major role.

“The main concern is that because free and open source software (Foss) is built by communities of developers with the source code publicly available, access is also open to hackers and malicious users. As a result, there could be the assumption that Foss is less secure than proprietary applications.

“The issue for anyone running a website collecting data will be about taking reasonable precautions, so it could be argued that choosing open sourced software is negligent in itself given all the evidence about the risks in using it.

The impact of this before the announcement of the GDPR was more of a ‘so what’ but, in a post-GDPR legislative landscape and if Which? gets its way, it could be catastrophic for a recruitment company.

Volcanic is supporting the recruitment industry towards GDPR compliance ahead of the May 2018 deadine. Download your free guide to GDPR for recruitment agencies.

 




 

ABOUT 1 MONTH AGO BY NEIL PICKSTONE

W1siziisijiwmtgvmdyvmduvmtuvntavmtmvnja0l0deufigznj1c3ryyxrpb24uanbnil0swyjwiiwidgh1bwiilci0mdb4mzawxhuwmdnjil0swyjwiiwib3b0aw1pemuixv0

Since the GDPR became law last month, there's still confusion surrounding the more specific terms of the PECR Here, we set out to make things a little clearer for the recruitment industry. To give them their full title, the Privacy and Electronic ...

READ MORE

ABOUT 2 MONTHS AGO BY NEIL PICKSTONE

W1siziisijiwmtgvmduvmzevmdgvntuvmzavnzmzl1njcmvlbibtag90idiwmtgtmdutmzegyxqgmdkuntuumtyucg5nil0swyjwiiwidgh1bwiilci0mdb4mzawxhuwmdnjil0swyjwiiwib3b0aw1pemuixv0

That’s the little big number so far across the Volcanic platform since last week; and that oxymoron really does sum up the mad rush post 25th May - Friday’s charge totalled 10 with further enthusiasm on the bank holiday being demonstrated by 5 req...

READ MORE

2 MONTHS AGO BY NEIL PICKSTONE

W1siziisijiwmtgvmduvmtqvmtuvndmvndkvny9cscbpbnrlz3jhdglvbi5qcgcixsxbinailcj0ahvtyiisijqwmhgzmdbcdtawm2mixsxbinailcjvchrpbwl6zsjdxq

To further support our clients in meeting their GDPR obligations, Volcanic has launched a new integration with Bullhorn. This new service allows all our Bullhorn clients to integrate their GDPR consents directly and automatically from their websit...

READ MORE

5 MONTHS AGO BY NEIL PICKSTONE

W1siziisijiwmtgvmdivmjivmtevmdcvmzivnti0l3nodxr0zxjzdg9ja18zotkyodg5ntuuanbnil0swyjwiiwidgh1bwiilci0mdb4mzawxhuwmdnjil0swyjwiiwib3b0aw1pemuixv0

In the second in the Volcanic GDPR video series we take a look at GDPR and security. GDPR compliance requires companies to take steps to ensure the ongoing confidentiality, integrity, availability and resilience of their systems, and to document t...

READ MORE