Protect your company informationThe page was last modified:
If you lose important company information, for example if you suffer a data breach or malicious code, it can have major consequences for you and your company. Common guidelines, routines and different digital services can help you manage information securely.
On this page you can read about the following:
A good start is to keep your roles as entrepreneur and private person separate, have one computer for the company and another for your private life. You also need to keep track of what information you need to have access to for your business to function. What problems can arise if someone unauthorized accesses the information or if it is incorrect.
Tips for protecting your most important information
- Back up company information frequently and regularly. The copy should be stored offline, for example on an external hard drive. Periodically try to restore the data to make sure everything is working as it should.
- Turn on automatic updates of programs and applications. This will give you the latest fixes and help protect your information.
Backup and secure your information - msb.se (in Swedish)
- Use strong and unique passwords, especially for your most important accounts such as your email.
Secure your passwords - msb.se (in Swedish)
- Decide how authorizations are to be handled and keep in mind that all employees usually do not need to have authorization to all information or systems.
- Avoid public networks in, for example, cafes and hotels. Instead, share networks from your mobile or connect via a VPN solution.
- Use e-services in contact with authorities and other companies. They are both simpler and safer than paper form.
All e-services - verksamt.se (in Swedish)
- Use a digital mailbox and you will receive mail from authorities digitally instead of on paper.
Get a digital mailbox for your company - verksamt.se (in Swedish)
Data breach means that someone has unauthorized access to information, for example in a computer system. It can also mean that someone manipulates, deletes, changes, or adds data to a system.
Phishing, a form of data breach, is a method where a fraudster tries to acquire sensitive information such as passwords, or bank or card details. They do this, for example, by getting you to click on fake links or attached files. The fraudsters usually use emails, text messages or chat apps where they invite you to click on links or attachments.
The message often contains an urgent message about a refund, or that you need to verify your customer details, and often appears to come from serious senders such as the post office, bank or an authority.
Always assess the plausability of what is written in the message and never click on links or attachments from unknown or unexpected senders. The purpose is to access company information or money.
An extortion virus, ransomware, is malicious software that locks computers and mobile devices or encrypts electronic files. This may mean that your company information is not available, that it is destroyed or deleted. To recover the stolen or locked data, your company is pressured to pay a ransom. Never pay – since there are no guarantees that this will fix the problem.
The virus can, for example, access the system by someone at the company approving a fake software update on a computer connected to the company's network or servers, or by someone visiting a web page infected with malicious code. Another common method of spreading malware is to send phishing emails containing infected attachments. If someone clicks on the attachment, the ransomware is installed on the computer.
If you and your company are affected by ransomware
Report to the police and seek help at nomoreransom.org. You will likely need to reinstall your computer and transfer files from your last backup. On the mobile phone and tablet, you need to do a factory reset.
If you have questions about how to protect your company information, contact:
The Swedish Police (Polisen)
The Facebook page: Swedish Police – fraud (in Swedish)
The Swedish Tax Agency (Skatteverket)
The Swedish Companies Registration Office (Bolagsverket)
The Swedish Civil Contingencies Agency (MSB)
Responsible: Swedish Agency for Economic and Regional Growth