The security safeguards condition relates to steps a responsible party must take to secure the integrity and confidentiality of personal information. The overarching requirement is that “appropriate, reasonable technical and organisational measures” must be taken to prevent unlawful access to, or processing of, personal information. The nuts and bolts of appropriate safeguards depends on “general accepted information security practices and procedures”. EU and UK guidance give firmer examples relating to, for example, access rights, IT training, and digital architecture. We have ensured we have these in place.
Vumacam has done everything possible to ensure that all bases are covered.