We’ve analysed 250 responses from information security and data protection professionals to understand the implementation challenges and milestones for early adopters of the General Data Protection Regulation (GDPR) in our GDPR Report for 2017.
Key findings from the report include:
- Most senior management (66%) have been briefed on the GDPR.
- Implementing the technical and organisational measures will be the biggest challenge in achieving GDPR compliance (61.1%).
- 50% of companies have not yet allocated a GDPR staff awareness budget, even though the Regulation stipulates to conduct regular staff awareness training to make sure employees are appropriately briefed and trained on their data protection responsibilities.
- 68% have not yet updated their processes to comply with data subject rights.
- Nearly 40% have appointed a data protection officer (DPO) to oversee GDPR compliance.
Complying with the GDPR
The GDPR, which will be enforced from 25 May 2018, imposes a much stricter regulatory framework for the processing of personal data across the EU than what most organisations are used to.
To meet its requirements, organisations need to know what personal data they currently hold or process, understand the risks to that data, adapt their business processes and infrastructure, implement tools and compliance processes, and change the way they collaborate with suppliers. In some instances, those changes could be significant and work will need to start as a matter of urgency.
More information about the GDPR
Download the free green paper: EU General Data Protection Regulation – A Compliance Guide
Sign up to our upcoming GDPR webinar series