CIOs vexed over EU reforms as ICO reveals 12-step plan

DataIQ News

Marketers may still be having sleepless nights over the EU data protection reforms but, more worryingly, the very people who will be leading the change are even more concerned, according a new study which shows 87% of UK chief information officers believe that their organisation might be exposed. 

The report, commissioned by Egress Software, asked 200 UK CIOs how concerned they are about the new General Data Protection Regulation (GDPR) , which will become law in 2018. 

Only 13% said they were not concerned at all by GDPR, but the majority (61.5%) said that they were ‘a little concerned', and more than a quarter (25.5%) said they were 'very concerned'.

The GDPR represents one of the biggest shake ups of the way personal data must be managed in nearly two decades.

Most people - even data protection experts - still don't know the exact details, and two measures stick out like a sore thumb.

The first is the mandatory reporting of serious data breaches, which means organisations will be expected to know what data might have been affected - within 24 hours, if possible. The second is that firms will also need to make sure they are able to delete all of a consumer's personal data quickly and completely from their systems, on request. 

Organisations found to be in breach of the regulation face hefty fines of up to 4% of global turnover.

The survey findings come in the same week as the UK Information Commissioner unveils a 12-step plan for firms to get their houses in order in preparation for the new laws. He warns that fines of up to €20m (£15.5m) are in the offing.

Commissioner Christopher Graham said: “People have never been so aware of what their personal data is, and never cared so much about how it is used. The law is changing to reflect that."

“The EU data protection reforms promise to be the biggest shake up for consumers’ data protection rights for three decades. Organisations simply cannot afford to fall behind. We know data protection officers understand this, and we know they sometimes find their views ignored in the boardroom. The new law gives directors 20 million reasons to start listening.”

You have....



to be GDPR compliant.

Register with us for all the news

Sign-up to hear about the latest DataIQ news, content and events.