We’ve gathered 250 responses from information security and data protection professionals to understand the implementation challenges and milestones for early adopters of the General Data Protection Regulation (GDPR) in our GDPR Report for 2017.
The key findings include:
- Most senior management (66%) have been briefed on the GDPR
- Implementing the technical and organizational measures will be the biggest challenge in achieving GDPR compliance (61.1%)
- 50% of companies have not allocated a GDPR staff awareness budget, even though the Regulation stipulates to conduct regular staff awareness training to make sure employees are appropriately briefed and trained on their data protection responsibilities
- 68% have not yet updated their processes to comply with data subject rights
- Nearly 40% have appointed a data protection officer (DPO) to oversee GDPR compliance
Complying with the GDPR
The GDPR, which will be enforced from May 25, 2018, imposes a much stricter regulatory framework for the processing of personal data across the EU than what most organizations are used to.
To meet its requirements, organizations need to know what personal data they currently hold or process, understand the risks to that data, adapt their business processes and infrastructure, implement tools and compliance processes, and change the way they collaborate with suppliers. In some instances, those changes could be significant and work will need to start as a matter of urgency.
More information about the GDPR
Download the free green paper: EU General Data Protection Regulation – A Compliance Guide
Sign up to our upcoming GDPR webinar series