The majority of IT professionals must have read about GDPR and its enforcement plans in the recent new updates. But how many of them are truly aware of its specifics and the preparatory measures that they must implement in their organizations? In this article at IT Business Edge, Sue Marquette Poremba divulges the issues such as lack of knowledge and awareness that revolve around this directive and its implementation.
What is GDPR?
General Data Protection Regulation (GDPR) is a new compliance regulation that has been proposed by European Union (EU). This directive mainly intends to blend data privacy laws and strengthen data protection for individuals within EU. It is likely to reshape the way organizations address data privacy globally. The deadline for enforcement of this regulation has been already set for May 25, 2018, failing which organizations are liable to pay heavy penalties.
GDPR is likely to play a strong role in maintaining the governance, risk, compliance (GRC) framework within an organization. However, with the fast-approaching deadline, organizations are way too far in upgrading their systems or practices for better alignment with GDPR.
Here are some interesting statistics gathered through a recent survey of Commvault:
- A mere 21 percent of IT professionals understand the concept of GDPR.
- Only 18 percent of respondents are aware of their company’s data storage process.
- Hardly 12 percent of people realize the impact of GDPR on cloud services.
- 87 percent of CIOs accept their company’s vulnerability to risk under GDPR.
Such statistics are scary enough for GDPR implementation. These facts are adequate to provide a clear image of the poor compliance and security measures existing in these organizations.
If this is the state of IT professionals, then an average employee or consumer is likely to know even less about GDPR. With the launch just months away, it is high time for companies to take strict data security measures and roll-out GDPR centric training programs.
To read the original article in full, visit the following link: https://www.itbusinessedge.com/blogs/data-security/organizations-uneducated-about-gdpr-and-data-privacy.html