More than four out of five (81 per cent) IT managers across Europe are unfamiliar with the new EU General Data Protection Regulation (GDPR). That is according to a survey from data recovery company Kroll Ontrack, and data erasure firm Blancco.
The GDPR aims to unify data protection laws to strengthen the protection of online personal data. If and when enacted into law, it will require businesses handling EU residents’ data to delete personal information on request or when it is no longer required by the organisation and encourage the use of auditable deletion procedures for companies processing personal data. As such, the research shows that 57 per cent of the 660 IT managers surveyed believe they will be directly affected by the regulation.
Kroll Ontrack and Blancco caution that non-compliant businesses could receive significant fines, and are at risk of large scale reputational damage. Data breach sanctions will range from €250,000 or 0.5 per cent of annual worldwide turnover for less serious breaches, up to 10m euros, or 5pc of annual worldwide turnover for more serious infractions.
According to the research, three out of five (61 per cent) IT managers said that their organisations have not taken measures to achieve compliance with the pending regulation, with more than half (55 per cent) failing to review and adapt data destruction policies. A further quarter (25 per cent) admitted to not having a process in place to deal with data destruction.
Paul Le Messurier, Programme and Operations Manager at Kroll Ontrack, says: “Organisations still have a great deal of work to do to ensure they comply with the data protection guidelines of the new GDPR regulation. Any business holding personal data on EU residents, be it online or offline, will have to abide by the new rules. One solution to this problem is to consult a certified, full service data destruction and erasure provider to assist in the secure deletion of unrequired data. Both Kroll Ontrack and Blancco offer the necessary tools and services to securely erase data from company servers as well as any other devices such as mobiles and tablets, ensuring that data does not fall in to the wrong hands.”
And Kim Väisänen, Managing Director of Blancco says: “Blancco’s Data Erasure Management (DEM) solution can help organisations achieve compliance with the coming regulation. DEM is the most practical way to avoid fines and demonstrate compliance to auditors and also assure customers that their data will be removed when required. Blancco provides secure DEM across the whole asset lifecycle for individual files and folders, laptops, flash media, mobile devices, servers and the cloud. Each erasure provides a time-stamped, tamper-proof certificate for a comprehensive audit trail.”
