Minimising risk in business: the relevance of cybersecurity and strong data protection

18. June 2018 | Drooms Global

Despite being a term on everyone’s lips and an increasing wealth of information becoming available online, cybersecurity remains somewhat of an abstract concept.

This may have something to do with its intangibility or perhaps more simply because most us don’t feel the need to gain knowledge of the topic and apply it to our everyday lives.

The fallout from that way of thinking however can be catastrophic. Unfortunately, the ever-expanding number of businesses being attacked and hacked says a lot about what we can expect in the future.

As a small to medium sized company in the virtual data room space, security has always been a top priority for Drooms. Rosanna Woods, Country Head UK of Europe’s leading VDR provider, sat down with down with Demystify Security, to discuss cybersecurity in 21st-century business and how you can minimise risk.

What does Drooms stand for and what are some of the key strategic objectives of the business?

What role does cybersecurity play in Drooms’ business practices?

The GDPR has shaken things up big time. What are some of its implications for business?

Still on the topic of data protection, is Drooms GDPR ready?

Drooms has always taken the security of its customers extremely seriously and has been GDPR ready for a while now. Several factors have made the road to compliance rather straight forward. Certainly, being a European provider historically compliant with strict German data protection standards has helped.

When it comes to a cyber threat, are there some sectors more at risk than others? Any tips for those wanting to minimise risk?

Sharing business-critical information in the era of cyber threat is risky with a lot of platforms out there. Security should be a major area of focus for providers who ought to be able to explain the various measures adopted to protect data from modification, unsanctioned processing or loss. Among other things, we believe in the importance of having a clear company structure. Doing everything inhouse for Drooms data room services minimizes risk significantly. Technical and Customer Support Service is carried out by Drooms GmbH in Frankfurt (Germany) directly for example. We do not carry out data transfer outside the EU & Switzerland either meaning we have no need for additional safeguards like the EU-US privacy shield, BCR’s or Model Clauses that are far from water tight as options. Data uploaded to the data room is stored on Drooms´ own servers in Switzerland and Germany.

To learn more about cybersecurity, visit

Special thanks to Ivan Seifert for initiating and producing this content series and to India Lewis for providing video editing support.

Sign up to Drooms Newsletter