Customers Won't Wake Up To The Threat of GDPR Until It's Too Late
More than three-quarters of cloud services were not ready for the European Union's GDPR regulations, according to a September report from Netskope. Trend Micro found that 57 percent of C-level executives shun the responsibility of complying with GDPR, which some unaware of what constitutes personally identifiable information and even unbothered by potential monetary penalties.
The legislation seems poorly understood, which will lead to many organizations waiting until the first prosecution is underway before they react, said BeyondTrust security experts. Many US companies are waiting to see how GDPR plays out stateside, and the EU will look to make an example of a multinational that is out of compliance, said Malcolm Harkins, Cylance's chief security and trust officer.
Businesses need to review their data security strategy, classify the nature of data, and distinguish EU data from data associated with the rest of the world. Trend Micro recommends that enterprises and industries handling sensitive data have a dedicated data protection officer (DPO) that can spearhead data processing and monitoring.