The Information Commissioner’s Office (ICO) is warning small businesses to take care or face a fine in respect of cyber attacks. The warning comes after a company which suffered a cyber attack was fined £60,000.
The investigation by the ICO found that a small company failed to take basic steps to stop its website being attacked. The ICO explained that regardless of size, if the business handles personal information then data protection laws apply and businesses must protect that information.
‘If a company is subject to a cyber attack and the ICO find that they haven’t taken steps to protect people’s personal information in line with the law, they could face a fine and under the new General Data Protection Legislation (GDPR) coming into force next year, those fines are set to increase.
The company in question failed to prevent an attack and protect the personal details of 26,000 of its customers.