SMEs and Internet Security

Ineffective website security will open the door to computer and network attacks which results in damage to the technical and information assets, the consequences of all of that will be the lost of customer confidence and damaged reputation and credibility. Furthermore, attacks can put any company out of business, especially where the website is the sole source of the revenue.

SMEs have to protect all of their transactions with Secure Socket Layer (SSL) technology, using digital signatures, securing web servers and using an authentication system. They also have to protect their customer’s information with a privacy policy.

The following laws and acts oblige SMEs to securely keep any data about their customers from being damaged, lost or being unlawfully processed:

1. Universal Declaration of Human Rights article 12.
2. European Convention on Human Rights Article 8.
3. Data Protection Act 1984 and Directive 95/46/EC on the protection of individuals with regard to the processing of personal data and on the free movement of such data.
4. the computer misuse act, 1990, which introduced three new criminal offences and they are:
1. Unauthorised access to computer material, which described as simple hacking that is using a computer without permission
2. Unauthorised access to computer material with the intent to commit or facilitate commission of further offences.
3. Unauthorised modification of computer material.