With centralised data, accessibility of threats is becoming easier. Since the data is all electronic and majority of threats are internal, an organisation has to have a clear vision for information security.
Cryptography is the strongest way of ensuring integrity and confidentiality of data. The only problem is that people carry the impression that cryptography is difficult to manage and is very costly. If done in the right manner, cryptography can ensure the right kind of accessibility and confidentiality. The data can also be changed during transmission. For example, the police send the data to the court without taking security measures. Someone can change say the details of the accused during data transmission!
Not only from safety point of view, data has to be protected to ensure privacy as well. With the IT Act 2000 and IT Rules 2011, a body corporate has to ensure that the personally identified (PI) information that system is handling is protected. The rules lay sufficient emphasis on any body corporate to ensure privacy and security of data.