British Businesses Are Unaware Of Data Protection Laws

Uploaded on 2017-07-19 in BUSINESS-Services-Law, FREE TO VIEW, NEWS-News Analysis

Almost two-thirds of British businesses are unaware they could face fines of up to €20million with the introduction of new data protection laws, according to a survey done by YouGov for national law firm Irwin Mitchell.

The survey asked 2,129 businesses if they had heard about new General Data Protection Regulation (GDPR) rules, with 62% saying they had not.

At the moment, UK businesses can be fined up to £500,000 for infringing data protection laws. However, this upper limit is

However, this upper limit is due to skyrocket to €20million or 4% of a company's global turnover, as of 25th May 2018. The report said it was "striking and concerning" that, although some businesses said they were aware of the upcoming changes, very few were aware of just how high the new fines could be.

Smaller businesses were least aware and so most at risk of being hit with large fines: only 22% said they had heard of the rules, compared to 43% of medium-sized and 56% of large businesses.
 
Other key findings:

  • Only 57% of financial services companies knew about the changes, with media and marketing companies towards the bottom of the list, at 38%.
  • When asked about the possible impacts of these new fines, almost a fifth of the businesses surveyed said they would go out of business.
  • Almost a quarter said they thought it was unlikely or very unlikely that they would even be aware of a data breach if one occurred.

Although the new laws are being enforced from Brussels, Brexit won't exempt British businesses from the changes: "It's important to understand that Brexit does not mean that GDPR compliance efforts can stop. The government has made it clear that GDPR will be the law in the UK both before and after Brexit," said Daniel Hedley, a partner at Irwin Mitchell.

"Any businesses that have put their compliance efforts on hold following the referendum result should restart them immediately," he said.

There were a record number of fines in the UK for data breaches in 2016: the number of fines almost doubled in 2016 to 35, totaling £3.2million, up from £541,000 in 2011. Both the number and value of fines are predicted to rise after the new rules are implemented in 2018.

The new rules will force businesses to be more transparent about how customer data is collected and stored, and all data breaches will have to be reported to regulator the Information Commissioner's Office within three days.

Business Insider:

You Might also Read:

GDPR Guidance For May 2018:

Three Ways To Prepare Your Business For GDPR:

The GDPR Effect On Brexit:

 

« Find Your Digital Risk
Ukraine Accuses Russia Of Ransomware Attack »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

National Trading Standards eCrime Team (NTSeCT)

National Trading Standards eCrime Team (NTSeCT)

The National Trading Standards eCrime Team tackles online consumer scams, rip-offs and fraud, as well as those committed by text or email.

PSW Group

PSW Group

PSW Group is a full-service Internet solutions provider with a special focus on Internet security.

Southwest Research Institute (SwRI)

Southwest Research Institute (SwRI)

Southwest Research Institute SwRI are R&D problem solvers providing independent services to government and industry clients. Areas of expertise include Cybersecurity, Intelligent Networks and IoT.

Vilnius Tech Park

Vilnius Tech Park

The region‘s most complex and integrated ICT hub, Vilnius Tech Park aims to attract and unite innovative talent from big data, cyber security, smart solutions, fintech and digital design.

AUTOCRYPT

AUTOCRYPT

AUTOCRYPT is a mobility security provider dedicated to the safety of future transportation

CybX Security LLC

CybX Security LLC

CybX is the first company of its kind to merge the practice of computer forensics with computer security and information security.

Cybeta

Cybeta

Cybeta's actionable cybersecurity intelligence keeps your business safe with strategic and operational security recommendations that prevent breaches.

Bytes Technology Group

Bytes Technology Group

Bytes is a leading provider of world-class IT solutions. Our growing portfolio of services includes cloud, security, licensing, SAM, storage, virtualisation and managed services.

Kennedys

Kennedys

Kennedys is a global law firm with expertise in litigation/dispute resolution and advisory services, particularly in the insurance/reinsurance and liability sectors, including cyber risk.

AutoRABIT

AutoRABIT

AutoRABIT provides DevSecOps tools built specifically for Salesforce developers to increase release velocity, produce consistently high-quality code, and enhance data security.

Transparity Cyber

Transparity Cyber

Transparity Cyber is dedicated to cybersecurity. As part of the Transparity Group we’re an established name in the Microsoft Cloud landscape, with a focus on cybersecurity excellence.

Akto

Akto

Akto, the plug & play API security platform. Discover your APIs, run tests and find business logic vulnerabilities at ludicrous speed.

Ruptura InfoSecurity

Ruptura InfoSecurity

Ruptura InfoSecurity provide CREST Accredited Penetration Testing & Offensive Security Services. We secure your critical assets through targeted and research driven penetration testing.

Peris.ai

Peris.ai

Peris.ai is a cybersecurity as a service startup that protects businesses and organizations from online threats.

Smile Identity

Smile Identity

Smile Identity helps businesses confirm the true identity of their users in real-time using any smartphone or computer.

eGyanamTech (EGT)

eGyanamTech (EGT)

eGyanamTech provides robust security solutions tailored for Operational Technology (OT) and Supervisory Control and Data Acquisition (SCADA) systems used in critical infrastructure systems.