recent work

UK Businesses to worry about proposed EU General Data Protection Regulation?

Independent IT integrator SecureData has voiced concerns regarding the ‘EU General Data Protection Regulation – UK Enterprise Enquiry’, suggesting the legislation contained within it could lead to “collateral damage” to UK businesses.

IT Managers across various industries (including financial, manufacturing, retail, distribution/transport and commercial) were questioned about data compliance – 94% were found to have some level of responsibility in this area.

Taken from the report, key findings include:
• 72 per cent of respondents from the largest businesses (3,000 employees+) said the draft data protection rules would cost their business more
• Limited agreement (64 per cent and 58 per cent) that the proposed regulations would improve business security processes and consumer data protection
• 40 per cent think the proposed 24-hour deadline for notifying individuals of a data breach would advertise security weaknesses before an appropriate security review could be completed
• 36 per cent fear “false alarms” from pressures to notify of data breaches quickly to avoid fines
• 26 per cent envisage their enterprise outsourcing the new data protection officer job role requirement

Carl Shallow, head of compliance at SecureData, comments: “Consumers may have a right to be forgotten, but hard-working growth businesses have a right to be remembered. The new internet economy is vital to Europe’s economic recovery and the need for increased data protection must be finely balanced with freedoms for technological and business model innovation. Fears overs unintended collateral damage from this legislation clearly needs to be reviewed.

“Across the enterprise questions must be asked about exactly what is sensitive data and where does it reside. There is frequently an abundance of ‘lost’ unstructured data siloed across the largest organisations’ IT estates. The new act is an ideal opportunity to review data governance procedures and management solutions.”

Comment
DataWise, a service by Absolute Data, is committed to ensuring companies and organisations, regardless of their size, create and follow realistic policies and procedures that are above the law. We can help your organisation create robust and effective data protection policies and procedures: we can spend some time getting to know what data-related activity your business partakes in, and ensure that your policies and procedures reflect this activity. We can also help to train your staff; not only in the importance of data protection, but how they can ensure they are fully adhering to data protection law. DataWise provides clients with a data protection toolkit, which offers a robust and effective solution in reducing the risk of data breaches – and prices start from as little as £125 a month. With the ICO’s power to fine up to £500,000 for data breaches, it is worth getting in touch with us to discuss how your organisation can ensure legal data compliance. Contact us now at info@absolute-data.co.uk, or call us on 01423 790125.