Cyber Security – is your business protected?

We live in a digital world with hackers and scammers doing their best to breach security and compromise data – and then ransom it back to you. In recent years there have been a number of data breaches, some significant, but it’s not just the data that gets comprised, but your customers and suppliers trust too. Even worse, depending on how serious the breach is, you can damage your company’s reputation and some consumer’s will choose to do business elsewhere.

What information is worth hacking?

You might think that you don’t have any information that’s worth hacking, BUT it’s the customer information in your CRM system, the supplier details in your invoicing system and the financial data in your accounting software. It’s your bank account details, your confidential client information and your company’s secret intellectual property or hard-won R&D findings. All of this is worth hacking and holding for ransom (or selling it to a competitor).

So it would make sense to take cyber security seriously – but most people don’t think about it beyond backing up their data. Here are some things to consider in your business, to improve your cybersecurity.

1. Make cyber security a company wide issue

Your cyber security is only as good as your weakest member of staff’s security knowledge, so make sure to have clear protocols and processes in place for storing company data. You’ll also need to train your staff on these protocols and processes, regularly as it’s human nature to become more lax over time. The better prepared your staff are, the less likely it is that you’ll have a security incident or accidental data breach.

2. Save important data securely

Where are your employees saving their files/data? Is this on a shared drive or is it saved on their laptop/computer hard drives? If it’s the latter, you’re only one hack away from a major security breach. If you haven’t already, set up clear guidelines on where files should be stored. Ideally, all confidential information should be stored on a shared drive that is backed up and requires authentication if you’re trying to access it remotely. You can also limit who has access to any confidential folders and content to further minimise the risk of it being exposed.

3. Use proper authentication and encryption

Set up two-factor authenicationor even multi-factor authentication for access to all your cloud and SaaS tools. Make sure to have proper data encryption of any confidential information that’s shared.

4. Keep all devices and hardware secure

If you have employees working remotely, then develop a policy that means their devices are password protected and that they don’t share the password with their spouse, partner, family, flatmates etc. They should always be using the latest versions of applications and make sure to automatically enable installation of updates. These devices should also NOT be left unattended anywhere – car, coffee shop or hot desks.

5. Use a secure network connection

You can further enhance your security by using a secure network connection. This means that when your staff are connecting to work applications, databases and shared folders, they always use the company network or an approved virtual private network (VPN). By using a secure network connection, you greatly reduce the chances of your data being intercepted and stolen, with VPNs allowing employees to log in securely when off-site or working at a client’s premises.

Speak to IT security experts and protect your data

Keeping your data safe and secure is now a foundational need for any business. If you want to reduce your security worries, it’s sensible to speak to a cyber security expert. They will be able to review your current systems, networks and security practices and advise you on the key actions that are needed to tighten up your security.

< Older Post

Newer Post >

Becoming an employer of choice

15 October 2025

How to attract great people to your business and how to keep them. Three tips to help you rise to the challenge to become an employer of choice.

What the IRD Expects from You as an Employer

10 October 2025

As an employer, there are several obligations and expectations set by the Inland Revenue Department (IRD) that you must adhere to. Understanding these requirements is essential for maintaining compliance and avoiding any potential penalties. Let's take a closer look at what the IRD expects from you as an employer. Register as an Employer Before you hire your first employee, you are required to register as an employer with the IRD. This is a crucial first step in ensuring that you can meet all tax and payroll obligations. Accurate Record Keeping The IRD requires you to keep accurate and detailed records of all employment-related transactions. This includes: Employee personal details Wages and salary paid Payroll dates and methods PAYE deductions and remittances Details of benefits or allowances provided to employees Maintaining proper records helps ensure that you are reporting and remitting the correct amounts to the IRD. Deduct PAYE Tax You are responsible for deducting PAYE (Pay As You Earn) tax from your employees' pay. This involves calculating the correct amount of PAYE and ensuring it is deducted from each employee's salary or wages before their net pay is provided. Pay Employer Contributions In addition to PAYE, you may also be responsible for contributing to your employees' social security and retirement benefits, depending on the country you operate in. These contributions are typically paid in conjunction with PAYE tax. Issue Statements and Forms At the end of the tax year or upon employment termination, you should provide each employee with a statement showing their total earnings and PAYE deductions. Additionally, filing the appropriate end-of-year PAYE schedules with the IRD is required. File Employer Returns Employers are required to file regular returns with the IRD, which could be monthly, quarterly, or annually, depending on specific regulations. These returns should accurately report all payroll activities, including PAYE deductions. Handle Tax Codes and Changes It's crucial to apply the correct tax codes for each employee's circumstances. Any changes in employment status or tax code must be updated promptly to ensure accurate tax withholdings. Comply with Audit Requests The IRD may audit your business to ensure compliance with employer obligations. As such, being prepared to provide all requested information and records in a timely manner is vital. Adhering to these expectations from the IRD is not just about compliance; it's about fostering a transparent and trustworthy relationship with your employees and the tax authorities. If you need assistance with understanding or managing your obligations as an employer, consider reaching out to a professional accountant. Our team is here to help you navigate these responsibilities seamlessly, ensuring peace of mind and allowing you to focus on growing your business. Feel free to contact us for further information or assistance.

Starting a sole trader business

7 October 2025

Thinking of starting your own sole trader business? The Sole Trader Toolkit from the Ministry of Business, Innovation and Employment has all the basic advice you might need.