Blog > Cybersecurity | Data protection and RGPD | File encryption

Incidents that may cause a breach of personal data according to the AEPD and how to avoid them

by | 29 Jun, 2021

Recently, the AEPD has published an update of its Guide for the notification of personal data breaches , a useful document so that those responsible for processing personal data know when to report a breach to the supervisory authority, in what term, or who and what content should include that notification.

In addition to publishing the new guide, the AEPD makes a assessment of the current situation in terms of personal data breaches, of which we highlight this fragment:

“The Agency has managed more than 700 data breaches reported in the first five months of 2021. Most of them have been caused by an external and intentional attack, ransomware being the most frequent threat, compromising not only availability but also confidentiality of personal data “.

Contenido del artículo

If you do not apply these cybersecurity measures in your company, you are in breach of the LOPD and RGPD

We insist on the importance of implement preventive security measures as the only effective way to protect the personal data that your company guards against cyberattacks, abuse of internal privileges or human errors.

We recall that the LOPD requires the implementation of following cybersecurity measures for correct compliance:

  • Register and control the accesses made to files and programs that contain personal data. To do this, you need a registration and access control software such as ET Seguridad.
  • Limit the resources of the computer equipment to which users have access only to those they need for the development of their work functions (also possible with ET Security ).
  • Encrypt or password protect files, programs and removable devices that contain personal data, something possible with ET Encrypt , included free of charge with ET Seguridad.
  • Last but not least, you need to make physical and online backups of all the data on your business network. Cloud copies should be stored encrypted and duplicated elsewhere, as we offer with ET Backup . This is the only truly effective weapon against ransomware attacks, as they are becoming increasingly aggressive and difficult to block.

Avoid most personal data breaches with ET Seguridad

The AEPD includes in its new guide the incidents that can cause a security breach . In this table we detail which are the most common and how to prevent them:

Guiding incident

How does ET Seguridad solve it?
Unauthorized modification or deletion of personal data
  • Configure user profiles to limit access and functions of the computer equipment.
  • In the event of an incident, the activity log will determine who and when deleted or modified the data.
Abuse of access privileges to extract, forward or copy personal data
  • Configure user profiles to limit access and functions of the computer equipment.
  • Control access to certain files with username and password.
  • In the event of an incident, the activity log will record who, when and what actions performed on the IT equipment.
Personal data sent by mistake electronically
  • Use the ET Encrypt tool to encrypt any document with personal data that you are going to send over the internet. Thus, in case of human error, you will prevent them from reading the content.
Lost or stolen device
  • Use the ET Encrypt tool to preventively encrypt your removable USB devices. Thus, in case of loss or theft, you will prevent them from accessing its content.
Cyber incident: unauthorized access to personal data
  • Configure user profiles to prevent unauthorized access to confidential information.
  • Control access to documents containing personal data with username and password, or store them always encrypted.
N

Remember that, if you always predict documents containing personal data, it will not be necessary to notify the AEPD in the event of a cyber-incident or human error.

The reason for this is that, in the event that a file falls into the hands of an unauthorized third party, if it was previously encrypted, it will not be possible to access its content unless you know the password. Therefore, confidential information will remain intact, thus avoiding a personal data breach.

The preventive encryption of sensitive information, whether it is the one you store on your computer or the one you send over the internet, is a very simple habit once it has been acquired and is very beneficial for business activity, since it protects you, not only from external attacks, but from inadvertent human errors.

Get ET Security at a special price

Request your personalized offer and start applying all these digital security measures. Get complete LOPD security.

Request offer

Request information

Follow us on social media

access control, aepd, aes 256, cyber attack, data confidentiality, Data Protection, encrypt files, ransomware

Related posts

10 Comments

  1. Ágabo Segui
    Ágabo Segui on 13 de March de 2023 at 13:20

    ¡Menos mal que existen empresas como ET Seguridad para proteger nuestros datos personales! ¡Imprescindibles!

    Reply
    • Maiol
      Maiol on 14 de March de 2023 at 01:20

      No pongas toda tu confianza en empresas de seguridad, siempre hay riesgos. Es importante ser consciente de cómo proteger nuestros propios datos también. ¡No bajes la guardia! ¡La seguridad es responsabilidad de todos!

      Reply
  2. Kerman
    Kerman on 15 de March de 2023 at 00:02

    ¿Y si implementamos ET Seguridad para evitar multas por incumplimiento del RGPD? 🤔

    Reply
    • Carel Lamas
      Carel Lamas on 15 de March de 2023 at 05:02

      Creo que la ET Seguridad es una buena medida, pero no debería ser solo para evitar multas. Cumplir con el RGPD va más allá de evitar sanciones, se trata de proteger la privacidad de los datos de las personas. Es importante hacerlo por ética y responsabilidad.

      Reply
  3. Fadia
    Fadia on 8 de May de 2023 at 19:21

    ¿Crees que realmente es tan grave no aplicar medidas de ciberseguridad? 🤔

    Reply
    • Aniceto Campillo
      Aniceto Campillo on 9 de May de 2023 at 05:21

      ¡Claro que sí es grave! No tomar medidas de ciberseguridad es como dejar la puerta de tu casa abierta y esperar que nadie entre a robar. Proteger nuestra información en línea es fundamental en esta era digital. mejor prevenir que lamentar. ¡Cuida tu seguridad en línea! 🛡️

      Reply
  4. Oceana Chica
    Oceana Chica on 4 de June de 2023 at 03:27

    ¿Y si nos ponemos serios con la seguridad de datos en nuestras empresas? ¡No hay excusas!

    Reply
    • Saúl Rosales
      Saúl Rosales on 4 de June de 2023 at 12:27

      ¡Totalmente de acuerdo! La seguridad de datos es fundamental en cualquier empresa. No podemos permitirnos excusas cuando se trata de proteger la información sensible de nuestros clientes y empleados. Es hora de tomar medidas serias y responsables al respecto. ¡La seguridad no es negociable!

      Reply
  5. Alessia Marti
    Alessia Marti on 31 de December de 2023 at 20:17

    ¡Vaya, me pregunto si ET Seguridad realmente puede evitar todas esas brechas de datos!

    Reply
    • Sherezade
      Sherezade on 31 de December de 2023 at 23:17

      ¡Siempre es bueno ser escéptico cuando se trata de seguridad cibernética! Sería interesante ver pruebas concretas de que ET Seguridad puede realmente evitar todas esas brechas de datos. La confianza se gana con hechos, no solo con palabras. ¡Vamos a ver si cumplen con lo prometido!

      Reply

Submit a Comment

Your email address will not be published. Required fields are marked *