Eskenzi PR ad banner Eskenzi PR ad banner
  • About Us
Sunday, 28 May, 2023
IT Security Guru
Eskenzi PR banner
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

A ‘keep everything’ culture puts most businesses at risk of non-compliance with upcoming legislation

by The Gurus
June 14, 2017
in Editor's News
Share on FacebookShare on Twitter

The deadline for complying with the new General Data Protection Regulation (GDPR) is just a year away, yet the majority of businesses are struggling to implement good information governance because they fail to engage employees to help establish and enforce an organisation-wide policy for dealing with information. According to the latest study from Cohasset Associates and ARMA International, a ‘keep everything’ culture persists at 81% of businesses, and 84% of businesses believe that employee resistance to change is a challenge they still need to overcome[i]. In light of these findings, Iron Mountain, the leading storage and information management services company, warns that business managers must start doing more to bring employees on board and overcome these challenges – or risk facing the hefty fines and reputational damage associated with falling foul of data protection legislation.
 
When it comes into force in May 2018, the new GDPR could result in swift and severe punishment for businesses that fail to comply with its regulations regarding the acquisition, use, transmission, storage, destruction and breach of personal data, with fines of up to 4% of annual world turnover or EUR 20 million, whichever is greater. [ii]
 
The study, Transforming Information Management, which has been underwritten in part by Iron Mountain, has highlighted the challenges faced by businesses as they undergo the transition from an operational-tactical approach focused mainly on records and information management to the adoption of a business-wide Information Governance (IG) strategy aimed at the benefit of the entire company and its customers. Despite the fact that business managers are putting policies in place to facilitate a transition towards IG, managers are guilty of not encouraging employees to engage with these policies. The study found that although most management personnel (83%) are engaged and enthusiastic about information governance, this drops to 68% of employees, with little being done to boost engagement – currently only a quarter (26%) of businesses provide information governance training to all employees.
 
Sue Trombley, Director of Thought Leadership at Iron Mountain said, “The days of keeping everything just in case should be well and truly over if organisations want to protect the personal data they hold in compliance with the law. Yet this is only the case in one in five businesses. Getting it right requires good information governance, which, if it is to be successful, must involve everyone in the business from the top to the bottom. While we are seeing a strong desire among business managers to transition towards a more compliant approach to managing information, that desire is not being met with training programmes to harness employee support.
 
“In today’s data-driven business world, the desire to keep everything is understandable, but it can put businesses at risk of treating customer, employee, and business-critical information irresponsibly, or keeping sensitive information beyond its legal retention period. Without the right training employees will naturally be resistant to change. They cannot make good information management decisions unless they understand what to do and why it is important for the business. The message is simple: put measures in place to help employees now, or run the risk of non-compliance with the shifting data protection landscape and potentially face the severe penalties as a consequence.”
[i] http://www.cohasset.com/retrievePDF.php?id=28
[ii] Prepare now for the new EU data protection law, Iron Mountain (2016)
 

FacebookTweetLinkedIn
Tags: ComplianceCybergdprsecurityTechnology
ShareTweet
Previous Post

Microsoft to disable SMB1 on all future Windows versions post WannaCry havoc

Next Post

Online banking security incidents come with a $1.8 (£1.4) million price tag for banks

Recent News

SnapDragon Monitoring scam advice

Tips to Protect Against Holiday and Airline Scams

May 25, 2023
Access Segmentation & Encryption Management from MyCena

New security model launched to eliminate 95% of cyber breaches

May 25, 2023
KnowBe4 Helps Organisations Battle QR Code Phishing Attacks With New Tool

KnowBe4 Helps Organisations Battle QR Code Phishing Attacks With New Tool

May 25, 2023
Purple Logo, capitalised letters: SALT.

Salt Security Uncovers API Security Flaws in Expo Framework, Issues have been Remediated

May 24, 2023

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

This site uses functional cookies and external scripts to improve your experience.

Privacy settings

Privacy Settings / PENDING

This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.

NOTE: These settings will only apply to the browser and device you are currently using.

GDPR Compliance

Powered by Cookie Information