Law firm managers are well versed in carrying out risk assessments to justify and make decisions around IT spend. However, from May next year, risk assessments become more complex when the GDPR comes into force.
Law firms hold a wealth of sensitive information, all of which will be subject to the General Data Protection Regulation (GDPR).
Specifically, Article 5 of the GDPR requires that personal data shall be:
“processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.”
You’ve heard about Ransomware. A hacker infiltrates your IT systems, locking them down until you pay a ransom. Some studies now estimate that over 50% of businesses have experienced this type of attack in the last year, and it’s particularly prevalent within the legal sector.