Preventative Measures. In order to avoid a data breach, it is important that dur- ing the first stage as many preventative measures are taken as possible. More and more parties are providing assistance such as Hacking-as-a-Service (▇▇▇▇), whereby the security system of an organisation is inspected periodically on the basis of a subscription so that vulnerabilities are found and remedied. Some orga- nisations have opted for a Responsible Disclosure Policy on their website.21 The aim of this policy is to invite ethi- cal hackers – often in exchange for a financial reward- to expose the weak spots in the in the data processing. A privacy impact assessment (PIA) must be carried out before personal data can be processed. This assessment should provide insight into risks that go hand in hand with the processing of data and privacy requirements that must be met. An organisation will have to keep in mind the type and amount of personal data that is being processed while carrying out a PIA.
Appears in 2 contracts
Sources: Compliance Agreement, Compliance Agreement