October 7, 2014
Research from data recovery specialists Kroll Ontrack and data erasure experts Blancco has found that 81 percent of IT managers across Europe are not familiar with the new EU General Data Protection Regulation (GDPR), which is expected to be adopted by companies from the end of 2014 but will begin to be enforced by 2016 following a transition period.
The GDPR aims to unify data protection laws to “meet the challenges of the digital age” and strengthen the protection of online personal data, and once enforced, will require all businesses handling EU residents’ data to delete personal information on request or when it is no longer required by the organisation using auditable deletion procedures.
However, while the research found that 57 percent of the 660 IT managers surveyed believe they will be directly affected by the regulation, 61 percent admit their organisation has not taken any measures to be compliant with the new rules, with 55 percent of respondents found to have not reviewed and adapted data destruction policies and a quarter not currently having a process in place for data destruction.
Should it be discovered that a business was not compliant with the GDPR, it could receive “significant” fines, with data breach sanctions ranging from €250,000 ($315,000) or 0.5 percent of annual worldwide turnover for less serious breaches, up to €1 million ($1.26 million) or five percent of annual worldwide turnover for more serious breaches. Kroll Ontrack and Blancco also noted that such businesses would also risk “large-scale reputational damage”.
Paul Le Messurier, Programme and Operations Manager at Kroll Ontrack, commented: “Organisations still have a great deal of work to do to ensure they comply with the data protection guidelines of the new GDPR regulation. Any business holding personal data on EU residents, be it online or offline, will have to abide by the new rules.
“One solution to this problem is to consult a certified, full service data destruction and erasure provider to assist in the secure deletion of unrequired data. Both Kroll Ontrack and Blancco offer the necessary tools and services to securely erase data from company servers as well as any other devices such as mobiles and tablets, ensuring that data does not fall in to the wrong hands.”
Meanwhile, Kim Väisänen, Managing Director of Blancco, said: “Blancco’s Data Erasure Management (DEM) solution can help organisations achieve compliance with the coming regulation. DEM is the most practical way to avoid fines and demonstrate compliance to auditors and also assure customers that their data will be removed when required.
“Blancco provides secure DEM across the whole asset lifecycle for individual files and folders, laptops, flash media, mobile devices, servers and the cloud. Each erasure provides a time-stamped, tamper-proof certificate for a comprehensive audit trail.”
Categories : Products and Technology