Skip to main content

General Data Protection Regulation - Why it Matters

Compliance with IT security and data privacy regulation is of growing concern to most European organizations. Businesses large and small are scrambling to assess their General Data Protection Regulation (GDPR) readiness, with less than a year to go until its implementation on 25 May, 2018.

GDPR is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU). The new framework demands a reassessment of the everyday operational structure for businesses that handle personal data in the EU.

The aim of the GDPR is to protect all EU citizens from privacy and data breaches in an increasingly data-driven world that is vastly different from the time in which the 1995 directive was established. Although the key principles of data privacy still hold true to the previous directive, many changes have been proposed to the regulatory policies.

Penalties for Non-Compliance

Organizations in breach of GDPR can be fined up to 4 percent of annual global revenue or €20 Million (whichever is greater). This is the maximum fine that can be imposed for the most serious infringements -- i.e. not having sufficient customer consent to process data or violating the core of 'Privacy by Design' concepts.

There is a tiered approach to fines -- i.e. a company can be fined 2 percent for not having their records in order (article 28), not notifying the supervising authority and data subject about a breach or not conducting impact assessment. It is important to note that these rules apply to both controllers and processors -- meaning 'clouds' will not be exempt from GDPR enforcement.

European IT Security Market Development

Canalys forecasts that this will spur the IT security market in Western and Central Eastern Europe to grow 16 percent to $11.5 billion in 2018. However, Canalys believes that there are significant differences in preparedness between companies of varied sizes.

"Our research shows that large businesses are well informed on information security regulations, with resources in place to ensure compliance. With ransomware threats such as WannaCry causing havoc, shareholders will be more willing to accept increased data security and compliance budgets to protect their long-term investment," said Nushin Vaiani, senior analyst at Canalys.

Small and medium businesses (SMBs) naturally have fewer resources, placing obvious constraints on implementation. But there are potentially massive fines for non-compliance with GDPR, potetially putting some SMBs under the threat of bankruptcy.

According to the Canalys assessment, all businesses must take action now to safeguard from this danger. Overall, the net effect on SMBs will be significant and many are turning to their existing relationships with IT channel partners for help.

Canalys expects this trend to accelerate in the coming weeks and months, as SMBs realize they have little time left to implement changes if they are to meet the May 2018 deadline.

Popular posts from this blog

Hybrid Work: How to Enhance Employee Productivity

When you hire qualified talent for a key role and trust them to perform, you'll likely achieve the best outcome. Skilled and experienced people will deliver results, regardless of the challenges. That's a key lesson learned from the pandemic experience as most knowledge workers were asked to work from their homes. However, some resist returning to an open-plan office. It's unacceptable. Meanwhile, forward-thinking leaders decided a "return to normal" is undesirable, and in hindsight, everyone should aspire to be more accomodating than before. Therefore, location flexibility is okay. Hybrid Workforce Market Development How will people adapt to these changes? They'll apply the modern IT tools at their disposal. They'll learn new skills and thrive. Nearly 80 percent of employees are now successfully using online collaboration tools for work in 2021 -- that's up from just over half of workers in 2019, according to the latest market study by Gartner. This g

Mobility-as-a-Service Creates Disruptive Travel Options

Building on significant advances in big data, analytics, and the Internet of Things (IoT), more innovative transit service offerings aim to increase public transport ridership and reduce emissions or congestion within metropolitan areas. By providing these services through smartphone apps, the transit services also significantly increase user convenience, providing information on different human mobility offerings -- including public transport, ridesharing, and autonomous vehicles. Mobility-as-a-Service Market Development According to the latest market study by Juniper Research, Mobility-as-a-Service (MaaS) subscribers will generate $53 billion in revenue for MaaS platform providers by 2027 -- that's rising from $5.3 billion in 2021. Let's start with a basic definition. MaaS is the provision of multi-modal end-to-end travel services through single platforms, by which users can determine an optimal route and price. The study identified a monthly subscription model as key to incr

Upside for New 5G Network Transport Infrastructure

The global mobile communication sector is in the midst of a significant network infrastructure upgrade to support the introduction of new high-bandwidth and low-latency broadband service offerings.  Telecom service provider data centers have an important role in fifth-generation (5G) network deployments. Providers undergoing their transition to Stand-Alone (SA) 5G must understand the technical demands of telco data centers and the key enablers of those offerings. According to the latest worldwide market study by ABI Research, the major prerequisites of 5G and the emerging transport solutions would help operators position themselves to successfully capitalize on the new revenue opportunities from delivering differentiated 5G connectivity services. 5G Transport Network Market Development "The rise of the telco data center has a high degree of confluence with the requirements of SA 5G architectures. SA 5G and its increasing reliance on telco data centers can be attributed to the incr