Less than two months before the European Union enforces its stringent General Data Protection Regulation (GDPR), businesses are rushing to achieve compliance, procedurally and technologically.
One of the hottest topics in the business world these days is the General Data Protection Regulation (GDPR), the European Union’s endeavor to create a unified framework that governs how data collectors and processors safeguard the privacy of their users and build walls that cybercriminals can’t penetrate.
In 2017, Gartner found organizations were gravely underprepared for the European Union’s General Data Protection Regulation (GDPR). More than half of companies affected will not be in full compliance when the regulation takes effect in May 2018, the group said.
As bad actors continue to hone their skills and governments keep raising the penalty for getting breached, large organizations across the globe seem to be doing little to mitigate the risks associated with cybercrime – despite knowing better for years.
In a report published by the U.S. Departments of Commerce and Homeland Security concluded what most security professionals have known for years: that botnets are a global threat, that technologies exist to mitigate the threats but aren’t widely used for multiple reasons, poor product security design and development, counter-productive market incentives, and low education and awareness across all market participants.
Fraudsters have moved from making a fast buck to crafting more ambitious, targeted attacks that produce long-term profits, according to an extensive analysis of real-world cybercrime attacks.
Just months before the EU General Data Protection Regulation takes effect globally, more than half of US-based employees in various industries have never heard of the upcoming regulation, according to a survey by adaptive training experts at MediaPro.
Not-for-profit Cottage Health System has agreed to pay the state of California $2 million for suffering multiple data breaches between 2013 and 2015. Taking a leaf from the EU’s playbook, the state of California is demanding that the healthcare institution appoint a Chief Privacy Officer – the equivalent of a Data Protection Officer stipulated by European law.
The United States Congress plans to introduce a bill that would push companies to report a breach within 30 days of its occurrence, or else. The law echoes similar efforts in the European Union, which aims to enforce similar regulations next year.
A survey of 1,300 senior executives at companies doing business in the EU reveals that the most-prepared firms are using the General Data Protection Regulation (GDPR) as a catalyst to up their game in cyber risk management.
Despite drafting new legislation to stay on par with the GDPR following Brexit, the United Kingdom is lagging behind the United States in investing to comply with the EU’s looming new data protection law. Both countries, though, are equally unprepared for GDPR, new data shows.
Eight months to go until the EU’s General Data Protection Regulation takes effect and only 26 percent of government organizations are aware of the impact of GDPR, the lowest of any sector, according to SAS. Privately held companies aren’t much better off.
