Privacy Notes – Remote Working and Data Protection
Hi There!
Welcome to another edition of Privacy Notes.
We are all aware of the current Covid-19 pandemic currently facing the world as well as its effects at a global and national level with measures such as mandatory lockdown periods being enforced by authorities in an attempt to curb the spread of the virus. Consequently, this has raised the need for companies and businesses to adopt a remote working system. The use of technology is more essential even now than ever as social distancing has caused countries to restrict movement causing many to stay at home for the nearest foreseeable future meaning remote working is, for many, no longer an option but a necessity.
Side Note: We will be having a webinar on Monday the 27th of April to extensively discuss remote working, its effects, and measures to be taken in mitigating risks to the confidentiality, integrity and security of Personal Data while working from home.
Remote working is strenuous on Data security compliance for a number of reasons. First, Personal Data is being taken out of the office, which typically has security measures put in place to ensure the security and integrity of Personal Data, to the home which has considerably lower levels of security of such personal data. The change of location from the workplace to the home also gives rise to high probability of exposure and unauthorized access to Personal Data, high exposure to hacks, malware and viruses. These are few issues which may arise while working from home. As such, organizations are advised to take steps in ensuring the security of personal data while continuing data processing activities remotely in order to ensure compliance and reduce the risk of occurrence of data breaches and liabilities which may arise from such breaches.
One of the ways risk of data breach may be reduced is through conscious and consistent observance of security measures by employees who handle, have access to or have personal Data in their possession. Employees should always ensure that information assets containing Personal Data are secure at all times, even when not in use. Employees should ensure that devices are password protected with restricted access to personal data. Personal Data which has been transferred to paper form should either be kept safely and confidentially or destroyed if it is of no further use.
Secondly, organisations are advised to ensure that firewalls and software security for virus, malware prevention are installed on devices which contain Personal Data. As personal data is moved from the office to the home, the risk of breaches through hacking and virus corruption increases. Also, in such situations, it may be difficult to detect the occurrence of a breach of Personal Data. It is thus necessary for these software security measures to be put in place in order to eliminate or mitigate the effect of a breach.
Employees who have access to personal data while working remotely are advised to contact their Data Protection Officer in the event of any breach or any issues arising in connection to Personal Data. It is also recommended that organisations take measures to regularly educate and sensitize employees on security measures to be taken in the course of ensuring the integrity of personal Data.
The above are just brief highlights of measures to be taken to minimize risks to personal data while working remotely especially in this period. Measures to be taken by organisations and employees will be extensively discussed in the webinar on Monday. Do well to join.
Thank you for reading.
Till next week, stay safe and wash your hands.
Yours in Isolation,
Uwemedimo Atakpo Jnr.