Using WhatsApp as a company poses problems when it comes to the German Data Protection Act, because contacts from the user’s cell phone are transferred to WhatApp’s servers. Corporate users of the service could be held liable (accompanied by significant monetary penalties!), because they are aware of this. Attorneys therefore unanimously recommend not using WhatsApp for professional purposes.
Did you know, PCI DSS Regulations are changing and are due to be in effect as early as June 30th, 2016? With the deadline quickly approaching, what should organizations do to ensure continuing compliance with PCI and information security?
If emails don’t only have to be transmitted in encrypted form but also have to be archived in compliance with legal requirements, IT decision-makers often find themselves faced with a new problem: How can it be guaranteed that despite end-to-end encryption the message will remain readable throughout the archiving period? Even if the recipient concerned has already left the company.
In recent days, many inboxes have been receiving emails that at first sight appear to carry joyous news. In the subject line they announce a tax refund, and the sender seems to be “Her Majesty’s Revenue and Customs” (HMRC) – the British tax authority. So every recipient with business ties to the United Kingdom is likely to take a closer look.
When it comes to granting rights, managers responsible for enterprise IT would always like to define access to important systems as precisely as possible. It is only in the rarest cases that one uniform administrator profile is sufficient for the entire IT support: Especially with regard to email security, it often occurs in practice that support employees are only supposed to monitor the flow of messages for one specific department or site.