One of the pillars of digital security in terms of data protection are passwords. In this article, we would like to discuss the first and most important line of defense against cyber attacks – which is the implementation of a password creation and management policy (the password itself is a specific type of confidential information that we have and can use for authorization).
All information that is collected from customers or from other sources must be adequately protected in accordance with the GDPR. Currently, both the Supreme Audit Office and the Ministry of Digitization recommend completely blocking hacked (exposed) and easy-to-guess passwords. It is one of the easiest methods of protection.
By the way – you can easily and safely check if your password has ever been leaked on the website: haveibeenpwned.com