PIPEDA Best Practices Achieved with MDR

Last week, changes to the Personal Information Protection & Electronic Documents Act (PIPEDA) went into effect. Our CTO, Adam Mansour, wrote about the changes, and how our MDR service could help overcome new disclosure, reporting, and data retention requirements. Today we turn our attention to twelve tips for containing and reducing the risks of a privacy breach, issued by the Office of the Privacy Commissioner of Canada (OPC). We review their recommendations, discuss the implications for your existing prevention technology, and explain how our MDR service enables you to act on each of the tips they issued, below.

There are four overarching directives for the OPC’s tips: Understand the Threats You’re Facing; Think Beyond the Hacker; Don’t forget About Hackers Either; and Breach Containment and Preliminary Assessment. For the list of tips in their entirety, visit the OPC’s website. See below for the first two directives and the tips under them. The last two are included in the second part of this post. 

Understand the Threats You’re Facing

For small to medium-sized enterprises, it can be difficult to access the expertise and technology required to truly know what you are up against. The tips the OPC offers are solid, but without having your own experienced CISO you may not be able to action them. Similarly, even if you have invested in a vulnerability scanner you may find thousands of vulnerabilities across your organization; without the resources to remediate them all, how can you prioritize to solve the problem? See how IntelliGO can help below:

Tip 1: Know what personal information you have, where it is, and what you are doing with it

Sponsorships Available

Sponsorships Available

Sponsorships Available

A deep understanding of the personal data you’re storing and the controls you have in place to determine who can access it, sounds like a job (Read more...)