28% of Organizations Not Completely Prepared for GDPR – Imperva

Imperva, Inc., provider of cybersecurity solutions on-premises, in the cloud and across hybrid environments, announced the results of a survey conducted at the Infosecurity Europe trade show that revealed 28% of organizations do not feel completely compliant with the European Union’s General Data Protection Regulation (GDPR).

The deadline to be compliant with GDPR was May 25. However, when asked whether they thought they would pass their first GDPR audit, less than half of the respondents said they were very confident they would pass the audit, over one-third were somewhat confident, and less than one-fifth said they were not confident.

“The deadline has now come and gone, yet the study shows that many organizations aren’t sure they have achieved GDPR compliance,” said Terry Ray, CTO, Imperva. “Any company that put GDPR off until the last minute now realizes compliance cannot be achieved overnight. It does not surprise me that many organizations feel unsure about the idea of a GDPR audit. The truth is many would fail.”

To assess personal data rights, the survey asked if respondents knew where all users personal data resided on their systems. More than a third of respondents said yes, they did know the location of the data while more than half said they would need an extra three months to get their house in order. Conversely, almost 90% said they could easily respond to requests from individuals asking to disclose the information they hold on them with 57% saying their organization had already received such a request.

Survey Methodology
Conducted at Infosecurity Europe 2018, Europe’s largest security focused conference, the in-person survey is based on responses from 185 attendees including IT professionals, managers and executives.