CIOs Are Concerned About the Impact of the GDPR

 
 
By Dennis McCafferty  |  Posted 07-04-2017 Email
 
 
 
 
 
 
 
 
 
  • Previous
    CIOs Are Concerned About the Impact of the GDPR
    Next

    CIOs Are Concerned About the Impact of the GDPR

    With the May 2018 compliance deadline for the General Data Protection Regulation, CIOs are preparing for big changes in how they handle EU customer data.
  • Previous
    Casting a Wide Net
    Next

    Casting a Wide Net

    94% of the U.S. CIOs surveyed said their organization possesses and/or processes personal data of customers based in Europe.
  • Previous
    Feeling Knowledgeable
    Next

    Feeling Knowledgeable

    86% consider themselves "well-briefed" about the General Data Protection Regulation (GDPR) requirements regarding data oversight.
  • Previous
    Impact on Data Use
    Next

    Impact on Data Use

    90% of the CIOs are concerned about the impact of GDPR on their ability to use data related to European customers and individuals.
  • Previous
    Course of Action
    Next

    Course of Action

    58% said they have a "detailed and far-reaching plan" to comply with GDPR data requirements, and another 38% said they have a "broad" plan but are still working out specific details.
  • Previous
    Test Prep
    Next

    Test Prep

    54% of the CIOs surveyed said they have a plan in place to respond to GDPR requirements to obtain customer permission to use personally identifiable information (PII) in application testing.
  • Previous
    Knowledge Gap
    Next

    Knowledge Gap

    29% said they "have yet to understand" how GDPR will impact the handling of PII data during application testing.
  • Previous
    Biggest GDPR Challenges
    Next

    Biggest GDPR Challenges

    Customer data consent-related issues: 64%, Design and implementation of internal processes: 62%, Data quality assurance: 52%, Data complexity: 44%, Cost of implementation: 44%
  • Previous
    Missing Link
    Next

    Missing Link

    84% of the CIOs surveyed admitted that they don't always know exactly where all of their customer data is, which makes it difficult to delete the data upon customer request, as required by the GDPR.
 

While the majority of U.S. CIOs consider themselves well-briefed about the European Union's pending General Data Protection Regulation (GDPR), they are concerned about its impact on their ability to use data related to European customers and individuals, according to a recent survey from Compuware. With the May 25, 2018 deadline approaching, the "Compuware GDPR Readiness Survey" reveals that most CIOs have prepared a "detailed and far-reaching plan" for compliance. Among other measures, the GDPR requires that companies provide breach notification within 72 hours of incident awareness. In addition, individuals are allowed to find out whether an organization is processing data about them—and for what purpose. And, with the GDPR's "right to be forgotten" section, people can have their data erased and can halt any further processing of it. With the GDPR's "increased territorial scope," all businesses handling personally identifiable information (PII) on people residing in the EU are subject to these regulations, regardless of where the business is located. Among other major hurdles, U.S. CIOs face challenges in the form of customer data consent-related issues, data quality and complexity, and the cost of implementation. "U.S. organizations are heading in the right direction on GDPR compliance, but there is still work to be done to improve data governance capabilities," said Chris O'Malley, CEO of Compuware. "Manual processes that are used to locate and protect customer data must be replaced with automated capabilities that enable businesses to quickly, accurately and visually manage data privatization and protection." An estimated 100 U.S. CIOs took part in the research, which was conducted by Vanson Bourne.

 
 
 
 
 
Dennis McCafferty is a freelance writer for Baseline Magazine.

 
 
 
 
 
 

Submit a Comment

Loading Comments...
 
Manage your Newsletters: Login Register