Read our insights

Since the enforcement of the General Data Protection Regulation (GDPR) in May 2018, European Union member states, have been dealing with the implications and requirements of this landmark legislation. The GDPR is an improved reconstruction of data protection directives and laws from the past, for member states to keeping up pace with the rapid technological developments and globalisation that have been changing the way in which personal data are collected, accessed, and used. In Cyprus, as in other EU member states, Data Protection Officers (DPOs) play a crucial role in overseeing GDPR compliance within organizations.

The Digital Operations Resilience Act (DORA) represents a significant step in strengthening the digital resilience of the financial sector within the European Union. This regulatory framework aims to ensure that all entities in the financial system have the necessary safeguards to mitigate cyber threats and operational disruptions. DORA establishes stringent requirements for digital risk management, mandating rigorous testing and assessment protocols to identify vulnerabilities in digital infrastructures.

Entering 2024, the Republic of Cyprus is at a pivotal moment in its journey toward enhancing data protection and cybersecurity.

Cryptocurrencies and distributed ledger technologies (DLTs) continue to change the world. We are at the stage of forming complex concepts of regulation for cryptocurrencies and blockchain. Therefore, today it is extremely important to understand all the intricacies of regulation from the usage of crypto assets.

Having a Privacy Operational Compliance Framework in place can help organisations protect personal data, avoid costly penalties for non-compliance, and demonstrate commitment to privacy to their customers and other stakeholders.

Before the introduction and enforcement of the General Data Protection Regulation (GDPR) back in May 2018, several organizations have been left exposed to risks that emerged from inadequate data protection and cybersecurity controls.

ISO/IEC 27001:2013 is a globally recognised information security standard.

The DPO’s role is to ensure compliance with the data protection laws that apply to the organisation, and it carries many responsibilities.

As a service organisation there are many ways to provide assurance to your customers and in turn other stakeholders over your control environment. One of the most effective and cost efficient ways is to issue a Service Organisation Control (SOC) Report.

Sophisticated cyber attacks pose a serious threat for organisations today. Many businesses, have had their data compromised due to insecure systems and a lack of safeguards. Data breaches can have serious financial and legal implications, as well as lasting reputational damage.

We provide global intelligence-led cyber risk and current threat profiling. We provide specific, pragmatic and actionable industry best practice to improve cyber security posture and help manage security incidents if required.

The European Commission proposed the EU Network and Information Security Directive as part of the European Cyber Security strategy. The directive came into force on the 10th of May 2018 with aim to increase the maturity level of cybersecurity across the state members of EU and ensure their strategic cooperation through Risk Management and Incident Reporting.

Businesses of all shapes and sizes are trying to carve out a competitive advantage by leveraging digital information.

Businesses have ploughed billions of dollars into technology that promises to keep cyber threats at bay. While technology undoubtedly plays a major role in combating digital threats, other areas have been neglected.

Realistic resilience: taking a pragmatic approach to cybersecurity

How do today’s leaders ensure that their businesses can anticipate and overcome cyber risk?