Under the Data Protection Act, you have responsibilities to protect the personal information that you and your staff collect and use. This includes a requirement to have appropriate security to prevent it being accidentally or deliberately compromised.
Breaches of data protection legislation could lead to your business incurring a fine – up to £500,000 in serious cases. The reputation of your business could also be damaged if inadequate security contributes to high profile incidents of data loss or theft.
This guide by the ICO gives advice for small businesses on how to keep IT systems safe and secure.