The European Union’s General Data Protection Regulation (GDPR) is a historic change to consumer data protection and privacy. The goal of GDPR is simple: to enhance EU citizens’ control over the data companies hold about them. While the goal is simple, achieving compliance isn’t so easy for most enterprises.
Following four years of deliberation, the current version of GDPR passed in April 2016 and became effective May 25, 2018. But according to a study conducted by Crowd Research Partners, 60% of companies are unlikely to meet the deadline for compliance with the new GDPR legislation.
While some organizations have taken steps to implement the necessary processes and procedures designed to attain, maintain and prove compliance with GDPR, many organizations underestimate the task and what it takes to maintain compliance. This includes a comprehensive review of who has access to what data and where regulated data resides, along with the ability to conduct required security audits and implement continuous controls.
of business risk can be
tied to just 5% of users