Scope of this procedure
This document aims to explain how Aylin White Ltd will handle the unfortunate event of data breach. How we will aim to mitigate the loss and damage caused to the data subject concerned, particularly when sensitive personal data is involved.
What is a Data Breach?
A data breach is generally taken to be a suspected breach of data security of personal data which may lead to unauthorised or unlawful processing, accidental loss, destruction of or damage to personal data.
How does a data security breach happen?
A data security breach can happen for a number of reasons:
Process of handling a data breach?
Should an incident of data breach occur, Aylin White Ltd will take all remedial actions to lessen the harm or damage. The following action plan will be implemented:
1. Immediate gathering of essential information relating to the breach
Aylin White Ltd will promptly appoint dedicated personnel to be in charge of the investigation and process. The dedicated personnel shall promptly gather the following essential information:
The dedicated personnel may consider designating an appropriate individual / team (‘the coordinator’) to assume overall responsibility in handling the data breach incident, such as leading the initial investigation, informing relevant parties regarding the breach and what they are expected to do to assist in the containment exercise and the subsequent production of a detailed report on the findings of the investigation. The coordinator may need to report and synchronise with different functional divisions / departments / units and escalate the matter to senior management so that remedial actions and executive decisions can be made as soon as possible.
2. Assessing the risk of harm
Some data security breaches will not lead to risks beyond possible inconvenience, an example is where a laptop is irreparably damaged, but its files were backed up and can be recovered. While these types of incidents can still have significant consequences, the risks are very different from those posed by, for example, theft or identity fraud.
Each data breach will follow the risk assessment process below:
3. Contacting the interested parties, containment and recovery
Once the risk has been assessed, the dedicated personnel in charge will take actions to stop the breach and if necessary this may involve law enforcement agencies i.e. police.
The following containment measures will be followed:
4. Notification of breaches
Aylin White Ltd appreciate the distress such incidents can cause. We endeavour to keep the data subject abreast with the investigation and remedial actions. In case of a personal data breach, without undue delay and where feasible we aim to notify the data subject within 72 hours of becoming aware of the breach and this include informing the ICO (Information Commissioner’s Office).
5. Notification of breaches
It is important not only to investigate the causes of the breach but also to evaluate procedures taken to mitigate possible future incidents. Aylin White Ltd attempt to learn from the experience, review how data collected is being handled to identify the roots of the problem, allow constant review to take place and to devise a clear strategy to prevent future recurrence.
The review will take into consideration:
Axis and Aylin White have worked together for nearly 10 years. We have formed a strong relationship, allowing the Aylin White team to build up a clear understanding of what our business needs both technically and in terms of company core values. We have been able to fill estimating, commercial, health and safety and a wide variety of production roles quickly and effectively.
Building surveying roles are hard to come by within London. However, thanks to Aylin White, I am now in the perfect role. I am surrounded by professionals and able to focus on progressing professionally.
Aylin White was there every step of the way, from initial contact until after I had been placed. It was a relief knowing you had someone on your side.
Aylin White offer a friendly service, while their ongoing efforts and support extend beyond normal working hours.
From the first conversation I had with Aylin White, you were able to single out the perfect job opportunity. All the info I was given and the feedback from my interview were good. I'm enjoying the job opportunity that I took and hopefully I am here for many more years to come
I have got to know the team at Aylin White over the years and they have provided a consistent service with grounded, thoughtful advice. They also take the personal touch seriously, which makes them very pleasant to deal with!
Aylin White is genuine about tailoring their opportunities to both candidates and clients. Having met up since my successful placement at my current firm to see how I was getting on, this perspective was reinforced further. I would recommend Aylin White to both recruiting firms and individuals seeking opportunities within the construction industry.
Aylin White work hard to tailor the right individual for the role. I have been fortunate to have been a candidate for them as well as a client and I can safely say they work just as hard for both to make sure that technically and culturally there is a good fit for the needs of the individuals and companies involved.
Aylin White has taken the time to understand our culture and business philosophy. They have therefore been able to source and secure professionals who are technically strong and also a great fit for the business.