Why third-party service providers could be your biggest data risk
This article was first published in People Management on 12 July here.
Associate Holly Cudbill comments in People Management on the potential risks of personal data breaches where an employer shares the personal data of its staff with third parties.
Forget GDPR – your business's payroll processor or childcare vouchers supplier could be an information disaster waiting to happen.
Holly Cudbill, associate at Blake Morgan, adds that, in her experience, HR departments had “largely overlooked” the issue of breaches at third parties, choosing to focus more on protecting their own company.
“That’s a good thing to focus on, but I think few organisations have actually thought about [what happens if your] pension provider says ‘this has happened. We’re just making you aware of it’ because the provider isn’t going to tell you what to do,” she says.
Read the full article in People Management here.