Despite the advances that the GDPR has made in protecting people’s personally identifiable information (PII), many companies have still left their data unprotected. A recent report by the Varonis Data Lab states that over half of companies across the globe store thousands of sensitive files that are easily accessible by all employees.
Shocking Data Statistics
Varonis performed over 785 data risk assessments on companies to see what companies were doing to secure critical data and evaluate the significance of exposed files. The statistics they found were astounding and leave businesses with much to be desired as far as security measures. Some of the highlights were:
Other important information Varonis found touched on the ideas that the larger the file size, the less protection is offered. They also found that 38% of users in a company have a password that never expires. While many types of industries were examined in the study, the financial services had the highest average number of exposed sensitive files at 352,771.
Other contenders included healthcare and government. With the amount of sensitive information shared in these industries, both the public and internal employees have a right to be concerned.
Current Company Protection Methods
One method that is commonly used is global access groups. This determines which users have access to files and folders within the network. These usually either encompass all employees who logged in with a username and password, or the authenticated users in addition to those who may have logged in with a non-password protected account. While well-intentioned, this method still allows a hacker to easily access all of your files if they break into a company’s network.
There are several types of permissions that limit how interactive a group of people can be with certain files. For a Windows system, these include full control, modify, read, write, and list folder contents.
VP of Compliance for Box, Crispin Maung, explained the top ways a business could protect their data. Simple enough, the first pointer is to know where the data is going and how it is used and managed on a daily basis. If this knowledge is communicated among workers, administrators can make informed decisions on sharing and protection policies. Some businesses make sure they are educating their employees at every level on the process and importance of data protection. A study by the Ponemon Institute found that 54% of data breaches are due to employee negligence or ignorance.
The best way to ensure sensitive files and folders stay safe within the confines of a company is to use encryption methods.
Encryption Offers Total Protection
The idea of encryption is not reserved for information technology experts. Anyone can use a device with encryption if it has an easy-to-use design. The SecureDrive is a hardware encrypted storage device with a tough epoxy coating. It offers unique authentication methods to ensure administrators and employees alike can secure their personal information.
The KP drive is unlocked by entering a unique PIN via the onboard keypad. The wear-resistant keypad keeps intruders from guessing commonly used numbers, ensuring your trade secrets will remain within the company. The device can also be set to read-only mode, so if an employee takes the drive home from the office, the device administrator can change the settings so that the files will not be compromised.
The BT drive is ideal for businesses due to its remote management features. It is unlocked by using an app on a mobile device. The remote management allows an admin to keep track of where and when the drive was accessed and by whom. This keeps the company in the know of how data is used. It also offers geo-and time-fencing so the drive can only be opened in predetermined times and places. By limiting when the data is accessed, the chance of having unprotected sensitive files is eliminated.
Even if an employee leaves the company, the password can easily be changed and access denied — meaning a disgruntled employee won’t be able to retaliate. The ability to update passwords and users effectively eliminates the amount of stale data.
Data protection methods are constantly changing to adapt to the ever-growing protection regulations that are gaining popularity worldwide. It is important to have a sound compliance program in place, and the SecureDrives are a storage solution whose encrypted technology will withstand changing data regulations. Call 1-800-875-3230 for more information.