So says a new survey of just over 1,000 UK workers carried out by digital marketing agency MarketingSignals.com, which also showed that nearly one in five (17%) admitted they are still unsure as to what the benefits of being GDPR-compliant are.
When quizzed on the ways businesses are not following this regulation, 35% said they are still sending marketing emails without the expressed consent, while 31% revealed they still have the data of those who have not agreed to opt in to having their data stored.
Meanwhile more than over a quarter (27%) revealed that they have not secured the data in case of a ransomware attack and a further 22% say they have a longer process for those choosing to opt out from receiving information.
Finally, hidden privacy-friendly choices (14%) rounded off the list of the top five ways businesses are still not GDPR compliant.
MarketingSignals.com managing director Gareth Hoyle said: "The research shows there are many ways that businesses are admitting to not following the newly enforced GDPR regulations. GDPR is the most fundamental change to ever happen to data privacy, so it is imperative that businesses follow this and complete the process as soon as possible.
"Businesses need to understand that acting responsibly and ethically with customer data is crucial to protect and enhance brand reputation and ensure customer trust. Not only this, but it will enhance the quality of data collected which is a good thing for UK businesses."
According to the survey, those working in technology were revealed as the worst culprits when it comes to GDPR compliance with 42%, followed by those within the retail sector (26%).