The UK Information Commissioner’s Office (ICO) has just issued its first fine under the General Data Protection Regulation (GDPR) which came into effect on May 25 2018. Although GDPR is a European legislation it still has significant implications for US organizations that handle or store personal data of any European resident. The fine of $357,775 (£275,000) was handed out to a medical organization following an investigation into the company’s handling of paper based documents that contained personal medical and prescription information. This type of data is classified as ‘special category data’ and under Article 9 of GDPR, organizations that handle and/or stores special category data must take additional steps to ensure that this data is appropriately safeguarded.
For channel partners, this case highlights the importance of ensuring that your customers are fully aware of their data security responsibilities and have implemented effective protection for both digital and paper based documents. In particular, it is important to ensure your customers have considered the potential security threat posed by the actions of internal users. According to the Quocirca Print Security Landscape 2019 report, this accounted for 32% of all reported incidents in 2019.
To ensure your customers are not subject to this fine, introduce them to the award winning FollowMe® by Ringdale solution, trusted by global leaders in banking, healthcare and government organizations, for providing the best in class Data Loss Prevention capability, comprehensive reporting and tracking.
To find out how FollowMe can support your customers data security and compliance requirements, download the full independent assessment conducted by Buyers Lab (BLI).