They are not aware of the existence of data protection laws

In the frame International Personal Data Protection Day which is celebrated on January 28, Kaspersky warns that ignorance of laws and rights poses risks, both for users and companies.

AND research conducted by Kaspersky, together with the consulting company Corpa, reveals that more than half of users in Latin America (55%) do not know if there is a law in their country on the protection of personal data on the Internet, while almost 13% do not know what their rights are in this matter. Brazil leads the list of countries in the region with 20% of users who do not know about these rights, followed by Chile (16%), Argentina (15%), Colombia (10%), Mexico (8%) and Peru (6%).

In the context in which cyber attacks with orThe targets of theft and disclosure of personal data are on the risethese figures are worrying as personal data protection legislation seeks to establish rigorous guidelines for the collection, processing and storage of personal data, while giving people important rights, such as access to their data or that which they may provide. request to delete them.

“Is It is important that users know the basics: Personal data are private and their control is guaranteed by law. A very common scenario is receiving unsolicited calls to offer us a product or service. In cases where there is no interest, we must always request the removal of our name from the databases. If we continue to receive invitations after submitting a request, it is important to know that it is possible to rely on justice so that the company will comply with our request”, he explains. Claudio Martinelli, General Manager for the Americas at
Kaspersky.

For businesses, whether SMEs or corporations, lack of awareness In terms of data protection laws, this also has ramifications as leaking personal data can result in serious penalties. However, another conclusion from the Kaspersky study shows that almost half of companies in Latin America (47%) do not train their employees on the applicable regulations. From the user of those surveyed, only 32% stated that they had received training related to this topic in their society.

Other recent findings by the company have shown that employee negligence is a key entry point for criminals into corporate networks, either through failure to update programs to correct vulnerabilitiescompromised corporate accounts (password theft or use of weak keys) or clicks on emails with malicious attachments.
All these situations can result in the leakage of confidential information, such as personal data of employees or clients, and this can lead to penalties, which differ depending on the severity of the violation, they can start with a warning, go over fines and even to suspensions or bans on the processing of personal data.

“It is crucial to train employees on how to recognize fraud and how to protect themselves. As the study shows, the human factor is the weakest link in business security and will determine how strong it is organization protection. If half the people “Those who work there don’t know that their actions can result in fines for the company, which means their security is very fragile,” says Martinelli.

As part of the celebration of the International Day of Ppersonal data protection, Kaspersky experts offer companies the following recommendations to avoid
data leak:
● Constant awareness training to all employees and explain the importance of account and password protectionUpdate from
programs, secure internet browsing andamong other best practices.
● Creating security policies that minimize human error. In addition to policies for creating and changing passwords (which are not as effective), it is important that organizations can control access to sensitive data. For example, the team Human resources should have access to employees’ personal data, but other areas do not, since
This may throw exceptions.
● Access to alerts about new scams (Threat Feed, one of the products within Threat Intelligence services) which allow blocking of fraudulent addresses that may be attempted to be accessed within the company network or from corporate devices.
● Use of security solutions As reliable as Kaspersky Endpoint Detection and Response to block any further infection attempts that may lead to leakage of sensitive data.
Kaspersky recommends to users: ● Be informed and do not underestimate the risks of your information on the Internet the legal framework, institutions and tools that exist for guaranteeing the right to data privacy in your country, as well as the risks of sharing sensitive information online that can lead to the theft of your confidential information. In this regard, experts warn against selling this one information in Darkweb and its use to open inappropriate records on platforms or in actual frauds, showing that the consequences are frauds digital affects people’s lives offline and online.

● Configure permissions for applications Always check the settings permissions in the apps you use to reduce the likelihood that your data is shared or stored by third parties, and beyond, without your knowledge.

● Read the website terms and conditions in full. One of the possible risks on the Internet is accepting the terms and conditions of websites without first reading them, as you may overlook the level of security they provide when you trust them. information, as well as passwords, that you probably use on other accounts. Read carefully and
know treatment data will be able to protect your data.