I&M Bank House, 5th Floor, 2nd Ngong Avenue, Upper Hill, Nairobi, Kenya

Our Clients in Steel Manufacturing Industry

Data protection and cybersecurity are critical issues in the steel manufacturing industry, as the industry relies heavily on technology and automation to control and monitor production processes.

Our Client in Steel Manufacturing Industry

  • We ensured the registration of the group of companies (5 companies in total) as data controllers/ processors.
  • We undertook a data protection audit and issued a report including recommendations on key compliance issues
  • We conducted 4 data protection training sessions for clients’ members of staff.


An example of a data protection and cybersecurity case in the steel manufacturing industry is the 2014 cyber attack on the German steel manufacturer, ThyssenKrupp. In 2014, ThyssenKrupp, one of the world’s largest steel manufacturers, suffered a cyber attack that resulted in the theft of sensitive company data. The attackers used spear-phishing emails to gain access to the company’s network and steal data, including information on the company’s production processes, intellectual property and business plans.

The incident had a significant impact on ThyssenKrupp, causing the company to lose a significant amount of proprietary information and damaging its reputation. The company had to invest heavily in cybersecurity measures to prevent future attacks, including implementing strict access controls and increasing employee training on cybersecurity best practices.

This incident highlights the importance of data protection and cybersecurity in the steel manufacturing industry, as well as the need for companies to have robust security measures in place to protect against cyber attacks. Additionally, It is important for steel manufacturing companies to have incident response plan in place and to train employees on how to identify and respond to potential cyber-attacks.

Furthermore, steel manufacturing companies also need to adhere to regulations and compliance standards such as NIST (National Institute of Standards and Technology) Cybersecurity Framework and ISO 27001 which are designed to protect sensitive information and intellectual property.