NEWS

5 Nov 2018

Latest ICO Encryption guidelines

The use of codes and ciphers to protect secrets began thousands of years ago whilst recent data legislation changes have brought this subject matter back into the limelight, particularly in the context of the need to secure sensitive email transmissions.

The ICO has published further guidelines whilst highlighting ‘residual risks’ associated with encryption used to protect data transfers.

https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/security/encryption/

As noted in previous guidelines . . . .

“A common type of personal data disclosure occurs when an email is sent to an incorrect recipient. Data controllers should be aware that encryption will only provide protection to personal data sent by email if the incorrect recipient does not have the means to decrypt the data (e.g. does not have the decryption key).”

(https://ico.org.uk/for-organisations/guide-to-data-protection/encryption/scenarios/sending-personal-data-by-email/)

 

http://www.BeyondEncryption.com

Leave a comment

Please Post Your Comments & Reviews

Your email address will not be published. Required fields are marked *