Data Protection Management

Andmekaitse korraldamise meeskond

One of the most critical resources of a modern organisation is data. The efficiency of an organisation is hugely influenced by the timely availability of information to the participants in the work processes.

Often, managers worry about issues concerning data protection:

  • If a key person, e.g. a sales director, quits, then how can we avoid the possible leakage of sensitive data?
  • How to reduce the possibility of a technical breakdown to the absolute minimum?
  • How well is our data protected?
  • How to manage the employment of ISKE (information security standard of Estonia)?

Data protection is not a one-time project. The analysis of risks and the data protection development plan help create a foundation and a routine for security activities. Development from that point must, however, be constant.

Risk analysis and relevant recommendations and observations give the organisation the right direction to manage data protection. After risk analysis, a reasoned action plan and a continuity plan can be drawn up.

Data protection is based on three great whales – confidentiality, integrity and availability. Data protection has a number of completely understandable aspects, if these are explained by a consultant who uses topical and practical examples.

Threat groups Weakness groups Methods. Function Methods. Executions
Force majeure
Work procedures
Human errors
Technical failures
Attacks
Environment
Infrastructure
Hardware
Software
Communications
Documents
Personnel
Prevention
Detection
Restoration
Physical
Organisational
Information technological