Despite drafting new legislation to stay on par with the GDPR following Brexit, the United Kingdom is lagging behind the United States in investing to comply with the EU’s looming new data protection law. Both countries, though, are equally unprepared for GDPR, new data shows.
A survey commissioned by TrustArc and conducted by Dimensional Research reveals how prepared, or unprepared, UK and US businesses are for the EU’s General Data Protection Regulation (GDPR) to take effect May 2018.
The numbers are in line with similar surveys by Gartner, as well as a study conducted by Bitdefender.
Overall investment in privacy management is increasing. 97% of companies in the US and 90% in the UK reported increased spending in this area with eyes on the future.
US organizations report a greater need to use technology to manage privacy (95%) compared to UK companies (87%), and more US than UK companies expect to invest significant amounts to comply with GDPR, TrustArc reports.
Before adjusting their internal systems and processes to address compliance requirements, companies must determine whether the GDPR affects them.
Dimensional Research surveyed 203 UK and 204 US professionals responsible for data privacy at companies required to meet GDPR compliance. Among the interesting findings (again, some right on par with other surveys), are:
The reason for the stark contrast between investment in the two countries is uncertain. We could pin it on American companies being more educated in GDPR matters, which would be slightly ironical considering the origins of the Regulation.
However, what’s more concerning is that both US businesses and UK organizations have a ways to go to consider themselves GDPR compliant. With only eight months to go and almost all companies requiring additional investments to comply with GDPR, it will be interesting to see who will escape unscathed and who will not.
The EU is ready to deal out fines of up to 4% of annual revenue, or up to 20 million euros, for organizations (including governmental organizations) found noncompliant starting May 2018. What is your company doing to make friends with the EU’s GDPR?
Filip is an experienced writer with over a decade of practice in the technology realm. He has covered a wide range of topics in such industries as gaming, software, hardware and cyber-security, and has worked in various B2B and B2C marketing roles. Filip currently serves as Information Security Analyst with Bitdefender.View all posts
Don’t miss out on exclusive content and exciting announcements!