Security stimulus

New guidance on good industry practice for directors issued by the Institute of Directors obliges directors and boards to identify and mitigate information and cyber security risks, and to prioritise business resilience, bringing a renewed focus to cyber resilience and supply chain security.

Directors’ cut

Handley Gill’s specialist ESG consultants consider the implications for company directors of the Institute of Directors’ recommendations for corporate governance best practice as set out in its voluntary Code of Conduct for Directors, and identify practical measures executive and non-executive directors can take to meet good industry practice in complying with the responsible business principle. Download our free primer on directors’ statutory duties under the Companies Act 2006 and best practice principles of the Institute of Directors’ Code of Conduct for Directors.

Duty free?

Handley Gill Limited calls on the Institute of Directors to amend its proposed voluntary Code of Conduct for Directors of UK companies to reflect risk management as a core tenet of responsible business and to promote business resilience across supply chains, to help UK plc win the war on cyber crime and safeguard the UK’s people, property and prosperity.

Off the rails?

Handley Gill Limited’s specialist data protection and ESG consultants consider the results of the Information Commissioner’s Office’s Cyber Security Incident Trends Report for Q1 2024 and the implications for Sir Keir Starmer’s new Labour government, calling for a greater understanding of and focus on cyber and information risk management by directors and trustees.

Nicola Cain11 July 2024Cyber Security, Data Protection, Cyber Security Breaches Survey 2024, Department for Science Innovation and Technology, Information Commissioner, Information Commissioner's Office, Cyber Attack, Data Breach, Data Breaches, Data Breach Statistics, Data Security Incident Trends Report, National Cyber Security Strategy 2022, Directors' Duties, ESGComment

Can data protection save the planet?

To acknowledge Earth Day, Handley Gill’s specialist consultants comment on how data protection / data privacy compliance can contribute to satisfying environment, social, and governance (ESG) goals, and the practical steps that organisations can take to implement and report upon sustainability measures to demonstrate accountability.

Nicola Cain3 May 2023Data Protection, Data Privacy, GDPR, UK GDPR, Compliance, Regulation, Earth Day, Environment, Sustainability, ESG, Environmental, Social, Governance, Environmental Social & Governance, Climate Change, Privacy by Design, Data Protection Impact Assessment, DPIA, Data Minimisation, Data Retention, Information Security, Advertising, Marketing, Programmatic Advertising, Accuracy, Data Accuracy, Data Deletion, Directors' Duties, Companies Act 2006, s172(1) Companies Act 2006, s414C(7) Companies Act 2006, Securities and Exchange Commission, SEC, International Sustainability Standards Board, ISSB, Task Force on Climate-Related Financial Disclosures, Sustainability Accounting Standards Board, UN Sustainable Development Goals, Global Reporting Initiative, World Economic Forum, Stakeholder Capitalism Metrics, GR1 Universal Standards, Data ControllerComment

Your money... and your life?

New cyber sanctions imposed by the UK and US governments against Russian nationals expose victims of ransomware, and their individual directors and officers, to criminal liability in the event that ransom payments are made.

Nicola Cain21 February 2023Ransom, Ransomware, Sanctions, Cyber Sanctions, Ransom Payment, Russia, Ukraine, Sophos State of Ransomware 2022 white paper, Information Commissioner, ICO, Home Secretary, Priti Patel, CyberUK Conference 2021, NCSC, National Cyber Security Centre, NCA, National Crime Agency, OFSI, Office of Financial Sanctions Implementation, Cyber Attack, Cyber Crime, Data Breach, Data Loss, Conti, Conti ransomware, Personal Data, Data Protection, UK Sanctions List, Guidance on Ransomware & Financial Sanctions, HM Treasury, Directors Duties, Directors' Duties, Criminal Offence, Criminal Liability, Cyber (Sanctions) (EU Exit) Regulations 2020, SI 2020/597, Sanctions & Anti-Money Laundering Act 2018, Designated Person, Cryptocurrency, Virtual assets, Due Diligence, Trickbot, Ransomware Victim, CPS, Crown Prosecution Service, Malware, Data Controller, Data ProcessorComment