Unfortunately Cyber-Security does not often rank top on the priorities of startups, although running such risks is so dangerous that companies can easily face crack-downs, brankruptcy and similar failures.
A non-exhaustive checklist of stuff to do:
- policies and procedures,
- appointed a specific team
- run risk management checks
- offer trainingg to raise data breach awareness
- develop incident-reporting processes
- revice website’s T&Cs