To help businesses identify whether their information is adequately protected
Iron Mountain, an information management service provider, has unveiled a data security checklist for business on Data protection day, which is falling on 28 January 2011.
The data security checklist is to help businesses identify whether their information is adequately protected.
The checklist says that the first step to securing data is through structuring business data – including how and where business files are located.
This should also include both physical and electronic assets as formal business records which provide evidence of important transactions and decisions.
The second step is by assessing and treating associated data risks. This can be done by understanding what risks information faces. This allows organisations to target their efforts of protect business information in a complete and secure way.
The next step is ensuring recovery of business data through storing server data on tapes at a secure, external archive centre.
In addition, businesses can also use the Cloud as a secure backup offering, for data which needs to be accessed at short notice. A Disaster Recovery and Business Continuity plan combined with both forms is generally a reliable offering.
Further, it is import to set permissions to access sensitive information through company’s internal security policies and ensuring that these permissions are reviewed in a timely manner.
The checklist also suggests that being aware of and following statutory retention periods will help in avoiding data infringements.
Moreover, involving board in risk assessment is important to decide on to accept or treat the risk. This followed with staff training on internal data security rules and statutory ones will act as the biggest defence mechanisms for business to protect data.
And finally, the checklist says that is better to seek help of expertise who can help and support business with Information security requirements.