Security concerns
3 December 2019
It’s hard to believe that this will be the last newsletter for 2019. The year has been a busy one for the HealthyPractice team, we have enjoyed all the contact we have had with you and we hope that you are enjoying the new website as much as we are.
We will be taking some time off and will have limited availability over the Christmas New Year period. Normal hours will resume from 6th January but you can still email us at business@mas.co.nz over the holiday period or call 0800 800 627 during usual business hours.
Our best wishes to you all for a safe, happy holiday season and a fantastic 2020 year.
Fiona, Chris and Shaun
This month we thought we would follow up our cybersecurity newsletter with some statistics and a few tips on practice security in general.
CertNZ provides a quarterly report on cybersecurity incident. The latest quarterly report available is for Q2 (1st April to 30th June 2019) and showed a 21% increase in incidents from Q1.
Of the 1,197 reports in Q2 from businesses and individuals:
- 23% of all incidents reported some type of loss
- Scams and frauds were responsible for 38% of reports, this was a 41% increase for Q1
- Ransomware incidents increased by 38% in Q2, most reports from businesses and organisations
- Direct financial loss reported in Q2 equalled $6.5 million
- Suspicious network traffic increased by 150% from Q1
It appears that most security incidents happen due to human error, e.g. staff clicking on a link in a phishing email. Providing communication and training on how to identify phishing emails, checking spelling, email addresses and anything else that might trigger alerts, e.g. attached invoices from suppliers that you are unaware of, requests to update a password by clicking on a link.
Practices hold valuable information and need to be vigilant about keeping this information safe. Read our content with tips https://www.healthypractice.co.nz/members/management/management-systems/information-technology/cybercrime-and-security/ and you might like to find out more about cyber insurance or arrange a quote.
Cybercrime is not the only security issue for practices. Over the holidays there may be times when staff are at the practice alone, have you put measures in place to make sure they are safe?
This can be as simple as a reminder:
- to lock doors if they are alone in the premises, especially if they are working in the back areas of your building
- Be aware of their surroundings when they are entering and exiting the premises
- Providing good sensor security lighting if staff are coming and going afterhours
- Panic buttons as part of your alarm security
- CCTV both internally and externally
There is content in HealthyPractice that give tips if your practice experiences an armed robbery or other security risks
Other recent articles
11 June 2025
What do you need to do when you receive a resignation.
An employee resigns by giving you notice. This will usually be in writing but may sometimes be done verbally. If the employee resigns verbally, you should request that they put their resignation in writing. If written notice is not provided, you should write to them and record their verbal resignation.
8 April 2025
A week in the life of HealthyPractice
So what does an average week look like for us? We review about 50-60 Individual Employment Agreements, contracts for service and letters of offer. Things we commonly adjust include: Agreement type e.g. fixed term, or casual that should be permanent part time Hours of work Trial period dates – remember the notice period can be shorter for this and we recommend 3 days to one week. Letter of offer details don’t match the IEA
13 May 2025
90-day trial periods
Over the last month we have had quite a few queries about 90-day trial periods. These questions have included their validity when there have been paid training days. Paid training days before formalising employment complicates things. Once you pay someone for undertaking work they are seen as an employee, and at this stage you haven’t provided the applicant with any terms and conditions of work in their employment agreement. Having a signed agreement before starting work is a legislative requirement.
Join other practices already using HealthyPractice.
Register now