In what’s being hailed as a positive step in data protection, Australia is passing a new data breach notification law that will come into effect later this month. It requires any businesses with a turnover of over $3 million to alert authorities and affected clients if they get hacked.
Two things about this strike me as shocking. First of all, so up until now companies were not obliged to tell their clients if they suffered a data breach?! Regular people may have had their data stolen several times over from a trusted business and they’ve never been informed!?
The second thing is, the thousands of businesses that don’t have a hefty $3 million in their annual coffers still don’t have to tell clients if they suffer a data breach!? Surely this should be illegal?
The idea behind it is, the bigger you get the more chance there is of being hacked so stock up on security or you’re at risk of a larger payout. But businesses who have a turnover of say 2.9 million are still not legally obligated to even mention it to the very people who have had their private property stolen!?
Smaller organizations have just as much, sometimes even more, personally identifying information on their clients as bigger ones. If that information is lost or stolen, or abused, the clients will be rubbing their head wondering how they could be victim of, for instance, credit card or, and the ‘small’ business owners can shrug their shoulders and remain tight lipped. This legislation does not protect your average Josephine.
Everyone connected to the internet is vulnerable to a cyber attack regardless of revenue, and personal data is personal data. It belongs to the individual. If it is stolen they should be informed.
It’s clear that businesses and governments cannot be responsible for protecting your online data. That job is up to the individual. To protect yours, download get2Clouds, from NOS Microsystems today. Encrypt your current cloud, send encrypted files of any size, and chat in a secure messenger.