British Businesses Are Unaware Of Data Protection Laws

Uploaded on 2017-07-19 in BUSINESS-Services-Law, FREE TO VIEW, NEWS-News Analysis

Almost two-thirds of British businesses are unaware they could face fines of up to €20million with the introduction of new data protection laws, according to a survey done by YouGov for national law firm Irwin Mitchell.

The survey asked 2,129 businesses if they had heard about new General Data Protection Regulation (GDPR) rules, with 62% saying they had not.

At the moment, UK businesses can be fined up to £500,000 for infringing data protection laws. However, this upper limit is

However, this upper limit is due to skyrocket to €20million or 4% of a company's global turnover, as of 25th May 2018. The report said it was "striking and concerning" that, although some businesses said they were aware of the upcoming changes, very few were aware of just how high the new fines could be.

Smaller businesses were least aware and so most at risk of being hit with large fines: only 22% said they had heard of the rules, compared to 43% of medium-sized and 56% of large businesses.
 
Other key findings:

  • Only 57% of financial services companies knew about the changes, with media and marketing companies towards the bottom of the list, at 38%.
  • When asked about the possible impacts of these new fines, almost a fifth of the businesses surveyed said they would go out of business.
  • Almost a quarter said they thought it was unlikely or very unlikely that they would even be aware of a data breach if one occurred.

Although the new laws are being enforced from Brussels, Brexit won't exempt British businesses from the changes: "It's important to understand that Brexit does not mean that GDPR compliance efforts can stop. The government has made it clear that GDPR will be the law in the UK both before and after Brexit," said Daniel Hedley, a partner at Irwin Mitchell.

"Any businesses that have put their compliance efforts on hold following the referendum result should restart them immediately," he said.

There were a record number of fines in the UK for data breaches in 2016: the number of fines almost doubled in 2016 to 35, totaling £3.2million, up from £541,000 in 2011. Both the number and value of fines are predicted to rise after the new rules are implemented in 2018.

The new rules will force businesses to be more transparent about how customer data is collected and stored, and all data breaches will have to be reported to regulator the Information Commissioner's Office within three days.

Business Insider:

You Might also Read:

GDPR Guidance For May 2018:

Three Ways To Prepare Your Business For GDPR:

The GDPR Effect On Brexit:

 

« Find Your Digital Risk
Ukraine Accuses Russia Of Ransomware Attack »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Virus Bulletin

Virus Bulletin

Virus Bulletin is an online security information portal and certification body, providing users with independent intelligence about the latest developments in the global threat landscape.

Israel National Cyber Directorate (INCD)

Israel National Cyber Directorate (INCD)

The Israel National Cyber Directorate is the national security and technological agency responsible for defending Israel’s national cyberspace and for establishing and advancing Israel’s cyber power.

Electric Imp

Electric Imp

Electric Imp offers an innovative and powerful Internet of Things platform that securely connects devices with advanced cloud computing resources.

Hitachi Systems Security

Hitachi Systems Security

Hitachi Systems Security provides customized services for monitoring and protecting the most critical and sensitive IT assets in our clients’ infrastructures 24/7.

GeoLang

GeoLang

GeoLang’s Ascema platform protects sensitive information at the content level by identifying, classifying and tracking data across the corporate infrastructure.

Sysmosoft

Sysmosoft

Sysmosoft specializes in providing highly secured telecommunication solutions for mobile devices for companies requiring protected access to sensitive data remotely.

V-Key

V-Key

V-Key is a global leader in software based digital security, providing solutions for mobile identity, authentication, authorization, and mobile payments for major banks.

Security & Intelligence Agency (SOA) - Croatia

Security & Intelligence Agency (SOA) - Croatia

SOA is the Croatian security and intelligence service. Areas of activity include Cyber Security and Information Security.

SOC.OS Cyber Security

SOC.OS Cyber Security

SOC.OS is an alert correlation and triage automation tool. It correlates and prioritises your alerts, boosting productivity, enhancing threat visibility and shortening mean time to respond.

WebSec B.V.

WebSec B.V.

WebSec is a Dutch Cybersecurity firm mainly focused on offensive security services such as pentesting, red teaming and security awareness and phishing campaigns.

Data Storage Corp (DSC)

Data Storage Corp (DSC)

Data Storage Corporation is a provider of data recovery and business continuity services that help organizations protect their data, minimize downtime and recover and restore data.

Query.ai

Query.ai

At Query.AI, we are committed to helping companies unlock the power of their security data, so they are empowered to meet security investigation and response goals while simultaneously reducing costs.

NTT Group

NTT Group

NTT offers agile, scalable technology services to bring it all together seamlessly, securely, and sustainably. We help you adopt a holistic security approach across your network, clouds, applications.

CyberHub

CyberHub

CyberHub is an educational platform that offers professional courses and knowledge sharing through articles and videos to help students discover their potential in cybersecurity.

Locuz

Locuz

At Locuz, we’ve made it our mission to help businesses like yours create an actionable digital strategy.

Mindcore Technologies

Mindcore Technologies

Mindcore provide cyber security services, managed IT services and IT consulting services to businesses in NJ, FL, and throughout the United States.