More than 250 organisations used DLA Piper’s Data Privacy Scorebox – an online survey tool – to assess their current level of readiness in relation to the General Data Protection Regulation (GDPR), which is due to be enforced from May 2018.
The Global Data Privacy Snapshot 2017 report revealed that although awareness is high, most organisations are not yet fully compliant with the GDPR. Across the nine sectors surveyed, on average only 38% of organisations were already compliant against the key GDPR requirements of data storage, data security and data subjects’ rights.
Highlights from the technology sector
Companies in the technology sector in particular scored low where employee training is concerned. 21% of companies made their employees attend at least one training session, 23% had an employee training programme that wasn’t compulsory, and 50% of the companies didn’t conduct employee training at all. Only 10% made their employees attend an initial training session plus a refresher.
The importance of employee training
The GDPR introduces new requirements, as well as new roles and responsibilities for every member of staff. It takes only one simple mistake for a company to be non-compliant and incur substantial penalties – up to 4% of annual global turnover or €20 million, whichever the greater. It’s therefore necessary to train all staff members and make sure they understand the changes and behave accordingly to ensure full compliance.
Where to look for a staff awareness training
There are several professional training courses for data privacy practitioners who wish to build a strong understanding of the Regulation. But is there an equivalent and thorough training course for employees? There is – the GDPR Staff Awareness E-learning course.
Delivered online, it introduces the Regulation, focusing on the GDPR’s roles, principles and processes, and assesses employees’ understanding with a final test – perfect for a staff awareness assessment.