IT Governance & Compliance
The use of ICT is intrinsic to business operations and vital to the prosperity of organisations. Ensuring your organisation is compliant with various industry and federal regulations (PCI, Sarbanes-Oxley, HIPAA, NDB) in order to keep sensitive customer data safe is becoming increasingly difficult as we work in a decentralised, mobile, app-filled world and failure to meet obligations set by compliance standards could mean penalties, fines and loss of trust.
People play an important role in keeping corporate information safe. Snooping, phishing and social-engineering are common ways hackers gain unauthorised access to a company's sensitive data. Mercury IT can assist in educating staff and implementing security policies for laptops, mobile devices and third party apps all of which are crucial to protecting data and the business as a whole.
The Notifiable Data Breaches scheme is an amendment to the Privacy Act 1998 and came into effect on the 22nd February 2018. It sets out mandatory requirements for entities in responding to data breaches. Entities have data breach notification obligations when a data breach is likely to result in serious harm to any individuals whose personal information is involved in the breach, more information can be found at https://www.oaic.gov.au/privacy-law/privacy-act/notifiable-data-breaches-scheme