Don't underestimate the impact of personal data leaks, especially in the context of IT networks in organizations/companies! Check out the full discussion here.

Personal data breach in a company's IT infrastructure is when personal data or sensitive information stored in a company's IT network is spread outside the network or accessed without permission. This can result in identity theft, wiretapping or robbery of personal data, and even distribution of malware.

Yes, when important, sensitive, or confidential personal data of a person or organization is accidentally or intentionally stolen or misused by a third party, that's where cybersecurity incidents have occurred. This personal data can be in the form of personal information, identity, personal identification, medical data, financial information, or other information that can be used to identify a person. This is not only detrimental to stakeholders in your organization, it can still have an impact on aspects of your trust and business continuity in the future.

An example of a personal data leak that has shocked the world is the personal data leak that occurred on Facebook in 2018. In March 2018, Cambridge Analytica, a UK-based data company, revealed that they had collected personal data from more than 87 million Facebook users. without their consent. Personal data collected includes usernames, location information, and data about interests and preferences. This data was then used to influence the United States presidential election in 2016. This data leak shocked the world because of its serious consequences.

How about Indonesia? The most frequently mentioned personal data leak in Indonesia is the case that occurred in November 2018, namely the personal data leak of employees of a well-known technology company in Indonesia. The company acknowledged that some of their employees' personal data, including names, phone numbers, email addresses and passwords, had been released to the public due to data security failures. Although the company took immediate countermeasures, many employees experienced a high level of vulnerability, as hackers were able to access their personal data, including email addresses and passwords, and so could engage in all kinds of fraud and illegal activities.

How can you secure your organization from this incident? Check the following tactical steps:

1. Establish a strict privacy policy and carry out regular monitoring.
2. Using encryption tools to secure personal data.
3. Improving web-based system security and conducting regular system security audits.
4. Prepare data leak reports and ensure that all staff members understand procedures related to data security.
5. Conduct background checks on all new hires and implement a two-factor usage procedure to protect personal access.
6. Establish policies regarding the safe use of mobile devices and storing important data in a secure environment.

These are a number of steps that can be taken to prevent personal data leakage. Does your organization have unique conditions, and need professional assistance to ensure the security of personal data? Consult with Telkom DWS, contact us now!