Story image

Veritas says Aussie firms aren't prepared for EU's new data protection regulations

27 Mar 17

The Global Data Protection Regulation (GDPR) takes effect next year, and only 30% of Australian businesses are prepared for it, Veritas has found.

The GDPR may be based in the European Union, but its effects will be felt globally by those that conducts business in the region or within an EU organisation.

The new GDPR will cover everything from shopping history to employee records. Veritas says it will also provide better control as to where and how sensitive data is both stored and transferred - and how it is audited.

According to Veritas, only 15% of an organisation’s stored data is known and actively managed. 52% of companies don’t know where data comes from, where it sits, who owns it and what use they may have had. 33% is irrelevant or ROT (relevant, obsolete or trivial) data.

If businesses don’t understand the regulation, they won’t be complaint. This means they’re putting not only data at risk, but may also subject to be a maximum fine of €20 million or four percent of annual turnover.

“This is not just an issue for EU companies. This regulation impacts any organisation that holds data concerning individual EU data subjects,” says IDC’s senior program director Carla Arend.

“This can be anything from a shopping history to employee records. It is imperative that companies immediately begin deploying solutions that will help them understand exactly what information they hold and let them manage that data in a compliant manner,” Arend says.

Veritas has seen an opportunity to help organisations deal with the mandates required by the GDPR.

“360 Data Management for GDPR plays a key role in helping companies accelerate their digital transformation strategies,” explains Mike Palmer, executive vice president and chief product officer at Veritas.

It provides organisations the ability to understand what personally identifiable information (PII) they have on file about EU residents. It can also help them quickly access information when requested. It can also protect PII from breach, loss or damage.

“At a time when data is your most critical business asset, giving companies capabilities that let them understand and gain valuable insights about their information provides advantages that go well beyond compliance,” Palmer concludes.

Cofense launches MSSP program to provide phishing defence for SMBs
SMBs are highly susceptible to phishing attacks, and often lack the resources necessary to stop advanced threats
Hillstone CTO's 2019 security predictions
Hillstone Networks CTO Tim Liu shares what key developments could be expected in the areas of security compliance, cloud, security, AI and IoT.
Can it be trusted? Huawei’s founder speaks out
Ren Zhengfei spoke candidly in a recent media roundtable about security, 5G, his daughter’s detainment, the USA, and the West’s perception of Huawei.
Oracle Java Card update boosts security for IoT devices
"Java Card 3.1 is very significant to the Internet of Things, bringing interoperability, security and flexibility to a fast-growing market currently lacking high-security and flexible edge security solutions."
Sophos hires ex-McAfee SVP Gavin Struther
After 16 years as the APAC senior vice president and president for McAfee, Struthers is now heading the APJ arm of Sophos.
Security platform provider Deep Instinct expands local presence
The company has made two A/NZ specific leadership hires and formed several partnerships with organisations in the region.
Half of companies unable to detect IoT device breaches
A Gemalto study also shows that the of blockchain technology to help secure IoT data, services and devices has doubled in a year.
Stepping up to sell security services in A/NZ
WatchGuard Technologies A/NZ regional director gives his top tips on how to make a move into the increasingly lucrative cybersecurity services market.