Views
2 weeks ago

PSIFebruary2017

Paxton Smart, Integrated

Paxton Smart, Integrated Security Solutions from Paxton • Leading Market leaders, over 30 years of industry experience • Scalable Access control and building intelligence systems for a variety of sites • Integrated IP ready solutions integrating with CCTV, door entry, intruder & fire alarms • Straightforward Intuitive and easy to use solutions including free software upgrades • Efficient Manage electrical utilities and control lifts, saving energy and money • Supported Industry leading technical support and five year product guarantee Find out more and register for FREE training: paxton.info/2746 www.paxton.co.uk | 01273 811011 Paxton protects Manchester United Football Club, Michelin, Foyles Bookstore and many more

INTERVIEW Online trading troubles? As a security system installer you probably rely on your website to promote your products and services to customers and provide a means of contact. You may even sell and distribute security and fire technology via your website as a sales platform, but how secure is your online presence? e’re all familiar with the cyber crime Wstories we hear about in the news these days, but is it only large corporations and public sector bodies that really need to worry about their business IT? PSI caught up with Chris Chapman and Lisa Toms of insurance brokers Aston Scott to find out why installers should take another look at their online offerings. How concerned should readers be about trading on the internet? Chris - There is no doubt that trading on the internet is now an integral part of almost every business in one form or another. Virtually every business has a website and many will use this form of trading to distribute their products. But it isn’t just internet trading that makes a business vulnerable to attack through its IT systems. All security system installers hold sensitive customer data on their computer systems, for example names, addresses, details of security systems and banking information. Most are reliant on their computer systems to conduct their business. And, as they’re in the security business, reputations can be left in tatters if this customer data finds its way from the installer into the wrong hands! So there is room for concern! However, some sensible risk management can go a long way and if supported by the right insurance cover help will be at hand in the event of a problem. Can companies be fined if they are shown not to have taken adequate IT steps – even if they contracted out the IT work? Chris - Companies should always ensure that their data and IT systems are adequately protected. For breaches of data security the Information Commissioners Office (ICO) currently has a number of options available under the Data Protection Act 1998 (DPA). These include non-criminal enforcement, mandatory audits, enforcement notices, criminal prosecution, and monetary penalties of up to £500k for serious breaches. Hiscox, one of the major UK cyber insurers says this picture will be changing over the next couple of years, as the new European General Data Protection Regulation (GDPR) comes in to force on 18th May 2018. What is a typical example of something going wrong for a trader? Lisa - Many people have heard of the data breach suffered by Talk Talk and Playstation but these incidents aren’t limited to just the bigger organisations. It is alarming how often smaller businesses, on a smaller scale are subject to this type of targeted attack, including Ransomware incidents (HM Government 2015 information security breaches survey). Are there any common errors that companies make with websites? Chris - Any company’s website can be subject to cyber-attacks, but adequate protection and professional advice can help mitigate its vulnerability. However, data breaches are not just restricted to website errors. Human error can play a part, from, with people emailing information to the wrong person, losing laptops/papers, to clicking on malicious links/attachment. Should every company with a website be wary? Chris - Every company that has a website should be aware of the potential dangers of cyberattacks, and the risks of using electronic communication for its day to day handling and storage of data. How can insurance help? Lisa - Insurance can help if something goes wrong, but the key is to put in place adequate protection to help reduce the risks in the first instance and safeguard your IT systems against attack. (continued over) Chris Chapman Lisa Toms “All security system installers hold sensitive customer data on their computer systems, for example names, addresses, details of security systems and banking information” www.psimagazine.co.uk 21