Small Business Can Do More to Train Employees on Information Security

Shred-it marks Small Business Week by encouraging small business leaders to take control of their information security

TORONTO, Oct. 14, 2015 /CNW/ - Information security policies and procedures play an important part in protecting small businesses from the risk of a data breach, but many small businesses undermine their efforts by failing to properly train their employees. According to the 2015 Shred-it Security Tracker, 69 per cent of small businesses either don't train employees on information security procedures or only train on an ad hoc basis.

"Eighty-two per cent of small business owners are at least somewhat aware of their legal obligations for storing and disposing of confidential data," says Bruce Andrew, SVP, Shred-it. "If that doesn't translate into strict information security protocols and training, then they're exposing their businesses to significant risks."

Many small businesses may overlook the development of information security protocols and the training of employees due to limited resources. However, exposure to the risk of a data breach may end up costing the business more in the long run. According to the Ponemon Institute, the average cost of a single lost or stolen record is $2501. Furthermore, the same report shows that among the countries studied, breaches due to human error are highest in Canada—employee training is an investment that pays long-term dividends.

 "It's important for small businesses to realize that every step they take to improve their information security protocols and training helps," says Andrew. "From teaching employees to shred documents they no longer need to mandating the encryption of mobile devices, arming employees with the knowledge they need helps protect organizations from the risk of a data breach."

Luckily for small businesses, there are some simple and easy-to-implement ways that will educate employees and help protect data in your organization. Shred-it is helping small business owners with convenient and executable reminders to place throughout the office that will help ensure employees know their information security responsibilities. To view Shred-it's Helpful Reminders please visit the Shred-it Resource Centre.

About Shred-it

Shred-it is a world-leading information security company providing information destruction services that ensure the security and integrity of our clients' private information. A wholly, owned subsidiary of Stericycle, Shred-it operates in 170 markets throughout 18 countries worldwide, servicing more than 400,000 global, national and local businesses. For more information, please visit

Ponemon 2015 Cost of a Data Breach Study: Canadian Page 1

SOURCE Shred-it

Image with caption: "Shred-it (CNW Group/Shred-it)". Image available at:

For further information: Janine Smith, NATIONAL Public Relations (for Shred-it), T: 416-848-1709, E:; Katarina Kristanic, Senior Manager, PR & Communications Shred-it, T: 905-491-2250/011-41-79-456-7985, E:

Custom Packages

Browse our custom packages or build your own to meet your unique communications needs.

Start today.

CNW Membership

Fill out a CNW membership form or contact us at 1 (877) 269-7890

Learn about CNW services

Request more information about CNW products and services or call us at 1 (877) 269-7890