October 24, 2019

Cybersecurity & Data Protection

In the Digital Age the threats to cybersecurity are rising day by day at an unprecedented rate. Hackers, criminals and ransomware are developing fast, hence organisations need bulletproof plans and solutions in order to sufficiently protect their data. The majority of companies under threat are in fact small-medium sized, which are actually not less exposed as most may believe.

In accordance with the GDPR, personal data should be processed in a way that ensures appropriate security and confidentiality of the personal data, including for preventing unauthorised access to or use of personal data and the equipment used for the processing. Hence, the personal data must be processed to the extent strictly necessary and proportionate for the purposes of ensuring network and information security.

In this regard, an organisation’s network or information system must be able to resist, at a given level of confidence, accidental events or unlawful or malicious actions that compromise the availability, authenticity, integrity and confidentiality of stored or transmitted personal data. Therefore, In assessing data security risk, consideration should be given to the risks that are presented by personal data processing, such as accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed - which may in particular lead to physical, material or non-material damage.

Content filtering: one of the critical gateways to access your company originates from the behavior of your employees. For instance, if an employee received a phishing email or downloaded malware or visited a malicious website, she may have exposed your company network, without even realizing it.

Secure WIFI: all organisations install WIFI at their locations which ultimately creates significant vulnerabilities. The WIFI must be installed in a separate line from your internal network. Such solution must be installed with encryption, and the security solution consistently updated in order to increase defences and maintain a second layer of protection in the network.

Managed Cybersecurity Solutions: all companies should put in place cybersecurity solutions to protect their data, mitigate their risk of a security breach and preserve their reputation. A common solution is by enabling 2FA (two-factor-authentication) for all email accounts, with installed endpoint protection and firewall. The VPN is then used to access the network of the company whilst out the office

Backup data: backing up data is a prudent action in the cyberworld we now live in and, if anything does go wrong, we will be thankful for our working backup and our restored data.

Our firm helps SMEs and large organisations in a wide range of sectors to comply with the EU General Data Protection Regulation, national legislation, and the relevant guidelines of the European Data Protection Board and the local Commissioner for Personal Data Protection.

Our associates focus on technology and cybersecurity aspects to cover all angles of the necessary exercise, in line with the rapid shifts in technological disruption. Together, we advise on the appropriate safeguards that must be implemented in the Digital Age, particularly considering the substantial risks and potential consequences involved. We provide an integrated approach to securely protect our clients, through adequate security measures and mechanisms to mitigate the risk in terms of available technologies and cost of implementation.


Please do not hesitate to contact us if you require further information or support in such matters

Copyright © 2020 K. A. Kourtellos & Co LLC
K. A. Kourtellos & Co LLC is regulated by the Cyprus Bar Association
magnifiercrossmenuarrow-up linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram