With GDPR expected to revolutionize the way enterprises store, use and protect personal data, it’s a worrying state of affairs to learn many organizations are unsure if they will be GDPR compliant. Especially when you take into account the onus to protect the data is left to the data controlling organization and not a third-party or cloud service provider.
Well, according to SAS, only 45 percent of organizations surveyed have a plan in place to ensure they meet the necessary requirements come May 2018. This leaves a large portion of enterprises out in the cold regarding GDPR. The survey also found that 58 percent had indicated that their organization was not fully aware of the consequences should they not be complaint. This is surprising to hear, especially when 42 percent of respondents felt that GDPR will have a large impact on their companies.
Moreover, with individuals now given the right to request their personal data be erased or transferred to another organization, having total visibility over where data is stored is now more important than ever before. This could prove a difficult process for large businesses and institutions, who need to be thinking about this right now to put plans in place.
However, it’s not all doom and gloom as there are benefits to GDPR with 71 percent believing that their data governance will improve because of the regulation. The survey also found that 37 percent of enterprises think that their general IT capabilities will improve as a they seek to comply with GDPR and 30 percent agree that complying with GDPR will improve their image.
If organizations are looking for a more secure option that offers GDPR compliance and data security, then the right encryption solution can help guarantee this. Encryption that is open source with no backdoors that could be used to exploit data is ideal. Crucially, organizations as data controllers can also reduce the scope of GDPR requirements by being the only party in control of the encryption keys.
Putting in place a Cloud Data Protection solution now can save enterprises a major data security headache and possibly fines or brand damage in the months to come.