Information Security and Cyber Security

URM > Information Security and Cyber Security
  • Information Security Risks - Tips for Working From Home, security risks, Home Office Security, home cyber security, cyber security tips, home cyber, information security, iso 27001

    Information Security Risks – Tips for Working From Home

    As more employees settle into the ‘new normal’ of home working, organisations need to be extra vigilant to the increase in cyber and other security-related risks attached to online and remote working. Whilst most home workers can use secure Wi-Fi connections, this is not the case for everyone. Some still need to use unsecured public […]

  • ICO issues enforcement notice to Experian

    Credit reporting agency found to be using personal data for marketing purposes without data subjects’ consent The Information Commissioner’s Office (ICO) has issued an enforcement notice to Experian, the credit reporting agency, asking it to make changes on how it handles personal data within its direct marketing services. The ICO has given Experian 9 months […]

  • What is the GDPR?, Understand how to comply with the General Data Protection Regulation, General Data Protection Regulation (GDPR), data protection act, data protection principles, what is the gdpr, data protection act, gdpr data protection, gdpr principles

    What is the GDPR?

    The General Data Protection Regulation (EU) 2016/679 (GDPR) is an EU regulation which came into effect on 25 May 2018 and has set a new benchmark for the processing of personal data. It applies to any organisation that is processing the personal information of data subjects inside the EEA. The Data Protection Act (DPA) 2018 sits alongside […]

  • The CJEU Declares the EU-US Privacy Shield Invalid and SCCs Valid…but with Conditions, services, consultancy, data protection, data privacy, EU-US Privacy shield, CJEU, SCCs, gdpr, Court of Justice of the European Union

    The CJEU Declares the EU-US Privacy Shield Invalid and SCCs Valid…but with Conditions

    What are the Implications and Next Steps for Your Organisation? On 16 July 2020, the Court of Justice of the European Union (CJEU) issued its judgement on the adequacy of both the Privacy Shield and standard contract clauses (SCCs). The EU-US Privacy Shield is a mechanism that enables participating companies to meet the EU requirements for […]

  • Cyber Essentials Applications – Top 3 mistakes made by organisations

    As an accredited Cyber Essentials certification body (CB), URM handles a significant number of applications every year from a wide variety of organisations and business sectors. For many organisations looking to achieve cyber essentials certification, having to complete a self-assessment can be challenging, particularly if they have not previously had to verify their IT infrastructure […]

  • Transferring Personal Data with the EU - Are SCCs the Answer?, data protection, personal data transfer, personal data, dp, uk data protection, urm blog, data protection blog, gdpr blog, gdpr

    Transferring Personal Data with the EU – Are SCCs the Answer?

    With the transition period following the UK’s exit from the EU set to end on 31 December 2020, those organisations that rely on personal data transfers from the EU to the UK are looking to ensure that the transfers remain lawful from 1 January 2021. While there are a couple of frontrunners amongst the options […]

  • How to ensure data protection compliance as you return to the workplace

    Following the coronavirus (COVID-19) lockdown, the return to the workplace is presenting organisations across the globe with a number of challenges. In this blog, we will be addressing the challenge of maintaining compliance with applicable data protection legislation as new controls are proposed that involve processing staff health data for new purposes. Compliance Wheel: Assess the […]

  • Business Continuity Plans within the PCI DSS | URM Consulting, blog, pci dss, business continuity, business continuity plans, pci dss and business continuity, iso 22301, urm consulting, pandemic planning pcidss,,

    Business Continuity Plans within the PCI DSS

    A great many organisations have recently realised that their business continuity plans (BCPs) failed to consider a scenario in which a global pandemic necessitates total remote working.  As such, continuing to maintain business as usual with staff confined to their homes has been challenging.  Not least of the many challenges, this has created concerns PCI […]

  • Zoom – Is That The Sound Of Your Security Disappearing?, zoom, software, video conference, information security, encryption, zoom breach, zoom business continuity, zoom news, zoom security issues, zoom blog, zoom meeting, zoom conference, zoom video conference, urm blog, urm news, zoom

    Zoom – Is That The Sound Of Your Security Disappearing?

    Many organisations have had to adapt very quickly to the rapidly changing restrictions brought in across the globe to help combat the spread of COVID-19 and, in a lot of cases, this has meant that the majority, if not all staff, rapidly transitioned to working from home.  And because most business continuity plans didn’t consider […]