Data Loss
I would like to know to what extent you have implemented data encryption and cyber insurance policies and losses that you have incurred specifically covering the following. 1. How many laptops, mobile, tablet or USB devices have been lost or stolen from your organisation in the past year (Jan 2024-Dec 2024)? Please specify numbers of each device type. 2. How many of these devices were encrypted? Please specify numbers of each device type. 3. Have you had to disclose or inform the ICO of any devices being lost or stolen in the past year (Jan 2024-Dec 2024)? 4. Have you had to disclose or inform the ICO of a data breach for any other reason e.g., insider/employee/user error, cloud breach or supply chain breach in the same period. Please state reason for disclosure. 5. How many data breaches (information has been lost, stolen or taken from a system without the knowledge or authorisation of the department/organisation) have you experienced within your organisation (department) within the past year (Jan 2024-Dec 2024)? 6. Do you have an existing cyber insurance policy in place, and how long have you had it? If not, do you plan to invest in cyber insurance in the coming year? 7. Have you had to claim on an existing cyber insurance policy in the past year (Jan 2024-Dec 2024)? - if so, what was the reason for this i.e. ransomware attack, phishing scam... 8. Other than GDPR, have new and updated compliance regulations such as the proposed ransomware ban; DORA and NIS 2, changed how you store and secure data within your department/organisation over the past year (Jan 2024-Dec 2024) and are you encrypting more data as a result?