What type of data does your company process?

1. You store and exchange documents and e-mails like application documents, personal & sensitive data of candidates and employees, contracts, payrolls, and scans of identification documents.
2. You collect these documents from individuals, send them to your customers, and exchange documents and e-mails internally.
3. You exchange documents with law firms, external accounting offices, auditors, banks, insurance brokers, marketing agencies, etc.
4. You exchange documents and e-mails internally - including your corporate documents, financial statements & agreements.

Why should you protect yourself and your customer?

1. Avoid data leaks of personal & sensitive data of candidates and employees. Personal data leaks can result in financial obligations, including loans, identity theft, and other illegal use.
2. Avoid ransomware with double extortion when data from your notebooks, e-mail, and servers gets stolen, and you are blackmailed and forced to pay a ransom. Hackers demand a ransom for not disclosing stolen data but might do it even after you paid.
3. Avoid espionage - especially all data of candidates and employees. Espionage can result from hackers acting on behalf of competitors or independently looking for customers for your data.
4. Avoid invoice (or other documentation) hacking - when your customer paid into the wrong bank account based on a fake invoice.

What can happen after a cybersecurity incident?

1. You might have to pay financial penalties to the regulators  (especially GDPR, different Privacy Acts, and others).
2. You will lose the trust of candidates and customers after a data leak. You should  expect a case to be filed against your business.
3. You will lose your time, money, and customers.
4. Your reputation will be damaged, which could end your business.