Preparing for GDPR: helping EU SMEs to manage data breaches

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)
416 Downloads (Pure)

Abstract

Over the last decade, the number of small and medium (SME) businesses suffering data breaches has risen at an alarming rate. Knowing how to respond to inevitable data breaches is critically important. A number of guidelines exist to advise organisations on the steps necessary to ensure an effective incident response. These guidelines tend to be unsuitable for SMEs, who generally have limited resources to expend on security and incident responses. Qualitative interviews were conducted with SMEs to probe current data breach response practice and to gather best-practice advice from SMEs themselves. The interviews revealed no widespread de facto approach, with a variety of practices being reported. A number of prevalent unhelpful-practice themes emerged from the responses, which we propose specific mitigation techniques to address. We therefore propose a SME-specific incident response framework that is simple yet powerful enough to inform and guide SME responses to data breach incidents.
Original languageEnglish
Title of host publicationAISB 2018
Subtitle of host publicationSymposium on Digital Behaviour Interventions for Cyber-Security
PublisherSociety for the Study of Artificial Intelligence and Simulation for Behaviour (AISB)
Pages13-20
Number of pages8
Publication statusPublished - 5 Apr 2018
Event2018 AISB Convention: Symposium on Digital Behaviour Intervention for Cyber Security - University of Liverpool, Liverpool, United Kingdom
Duration: 4 Apr 20186 Apr 2018
https://www.sspedi.co.uk/aisb2018

Other

Other2018 AISB Convention
CountryUnited Kingdom
CityLiverpool
Period4/04/186/04/18
Internet address

Fingerprint Dive into the research topics of 'Preparing for GDPR: helping EU SMEs to manage data breaches'. Together they form a unique fingerprint.

  • Profiles

    No photo of Jacqueline Archibald

    Jacqueline Archibald

    • SDI - School Head of Teaching Quality and Learning Enhancement

    Person: Academic

    Cite this

    Kapoor, K., Renaud, K., & Archibald, J. (2018). Preparing for GDPR: helping EU SMEs to manage data breaches. In AISB 2018: Symposium on Digital Behaviour Interventions for Cyber-Security (pp. 13-20). Society for the Study of Artificial Intelligence and Simulation for Behaviour (AISB). http://aisb2018.csc.liv.ac.uk/PROCEEDINGS%20AISB2018/Digital%20Behaviour%20Interventions%20for%20CyberSecurity%20-%20AISB2018.pdf