Risk, Compliance and Fraud Management
High profile data losses eroding confidence
Posted: 30th March 2008
High profile data losses by the DVA and HMRC have eroded confidence in the UK Government's ability to handle personal data, it has been announced. The survey, conducted for the Information Commissioner's Office, found that over half of those polled have no confidence in the way that banks and the UK Government protect their data, while seven out of ten claim they feel "powerless" about how their personal information is looked after.
Stephen Hall, CEO of InfoGov said “It is good news that this increased awareness has apparently caused more people to be cautious, take greater care with their data, and regularly check their bank statements for signs of fraud, but there is more to be done by Government and the private sector to restore public confidence in data management generally.”
"David Smith, Deputy Commisioner at the Information Commissioner’s Office is quite right to encourage everyone to check how organisations are storing their personal details. But those organisations must change, transform or otherwise do differently what they do now - if they are to deliver on David Smith’s advice.” Stephen added.
“The ICO is absolutely right to advise organisations to explain how data will be used before collecting it, and avoid storing unnecessary data. But until they can evidence their actions to the satisfaction of auditors they will be hard placed to satisfy and sustain information standards required by Government. This evidencing can be done efficiently and effectively by electronic audit using Proteus Enterprise™.” says Stephen.
Proteus enables controls not only to be applied to technology and processes – but also people accessing and managing data. These can be linked, as can the policies and documents for data management. Utility is provided in the form of electronic compliance audits, remediation, action planning, incident management, business impact analysis, business continuity and asset management, risk assessment, policy management, and risk and compliance management reporting in one total solution - web based. Compliance with data management policy is evidenced through Proteus.
Increased need for data management is driving organisations towards unified governance, risk and compliance, fraud and crisis strategies within existing knowledge and information architectures. They no longer see these functions as separate project-based activities, but as a composite framework that guides, standardises and strengthens processes and security, and integrates technology throughout the organisation and supply chain.
This world-leading GRC&F utility in Proteus Enterprise™, developed by the UK company InfoGov Ltd, automates governance, risk and compliance, fraud, crisis, identity and data management, and enables defence and protection against data breaches across any type of business line in one web-based tool.
But how do you ensure compliance with a multiplicity of data management regulations, including risk mitigation in one solution? Our unique approach brings together and links controls, compliance, business impact, risk analysis, documentation and incident management into one total solution. Proteus RiskView™ provides a powerful business intelligence ‘dashboard’ and reporting capability allowing real time visibility of risks at Board level via the web.