New research has found that three out of five IT managers said that their organisations have not taken measures for compliance with the pending EU General Data Protection Regulation (GDPR).
The research, from data erasure software providers Blancco and Knoll Ontrack has found that 55 per cent of IT managers are failing to review and adapt data destruction policies in preparation for the new GDPR. Worryingly, a further 25 per cent do not have a process in place to deal with data destruction and four out of five IT managers said they were unfamiliar with the new regulation.
The GDPR is designed to increase the protection of personal data, with organisations handling EU residents' data required to delete personal information on request or when it is no longer required.
Under the new regulations, penalties for a serious data breach will be up to €100m or five per cent of annual worldwide turnover. For smaller infractions, penalties of between €250,000 or 0.5 per cent of annual worldwide can be expected.
Jonathan Richardson, Managing Director at Russell Richardson, a company specialising in secure shredding, said: “It’s worrying that businesses are ill prepared for the pending legislation changes. With the sanctions for a breach so high and the potential damage to a company’s reputation, businesses can’t afford to take any risks with compliance. At Russell Richardson we always advise that companies of all sizes have a data destruction policy in place and we are happy to offer our expert advice and guidance.”
Russell Richardson are able to provide a complete data security service including IT asset disposal, on site or off site secure document shredding, media shredding and data destruction.