Companies concerned about meeting new data protection regulations

A survey has revealed that many IT professionals are concerned about how they are going to meet the new EU General Data Protection Regulation (GDPR) regulations.

Almost 80 per cent of IT workers in medium-sized and larger companies are concerned that they will not be able to meet the requirements of the new regulations, which come into effect in 2018. YouGov, which carried out the survey on behalf of a cloud security company, questioned professionals from 500 businesses.

GDPR, which is new legislation from the European Commission, is designed to boost the data security issues for companies and citizens of the EU; however, the survey reveals that only one-fifth of companies are confident of being ready for the new regulations, which will include identifying data classified as personal, where the data is stored, and notifying the relevant authorities about any data breach within a set period of time.

One-fifth of companies believe that the regulations will be met by their cloud computing providers; however, the specific wording of the new regulations puts the responsibility with the user rather than the storage service. A concern is that two years to comply may not be enough for some companies to put the right protection measures in place for the deadline.

The survey also revealed that one-third of IT professionals are aware of unauthorised cloud apps being used in the workplace; however, very few have measures in place to deal with such a situation.