Organisations See Huge Rise in Encryption Implementation Following GDPR Enforcement
More than half of organisations enforce encryption of data on all mobile devices and removable media
MANCHESTER, UK. – 23rd May, 2019 – Apricorn , the leading manufacturer of software-free, 256-bit AES XTS hardware-encrypted USB drives, today announced findings from a survey highlighting the rise in encryption technology post GDPR enforcement. Two thirds (66%) of respondents now hardware encrypt all information as standard, which is a positive step considering over a quarter (27%) noted the lack of encryption as being one of the main causes of a data breach within their organisation.
This is in contrast with last year’s survey where only half enforced encryption of data, or were completely confident in their encrypted data, in transit (52%), in the cloud (52%) and at rest (51%), showing a discernible increase in the use of, and need for, encryption as a key component of the data security process.
Forty one percent of respondents have also noticed an increase in the implementation of encryption in their organisation since GDPR was enforced, and their organisation now requires all data to be encrypted as standard, whether it’s at rest or in transit. This demonstrates the significance of encryption in GDPR compliance and the protection of sensitive data and is likely driven by it being specifically recommended in Article 32 of GDPR as a method to protect personal data and in Article 34, where obligations towards breached data subjects are reduced where the breached data is encrypted.
GDPR is clearly making security a board level topic with the C-suite now owning the security budget in eighty six percent of the companies surveyed. Organisations are allocating just under a third (30%) of their IT budget to GDPR compliance, which is huge increase when considered against research commissioned by IBM in 2018 that set the ideal spend on cyber security, in general, at 9.8 to 13.7% of the IT budget.
However, despite last year’s survey finding that ninety eight percent of those who knew that GDPR applied to them forecasting a need to assign further budget and resources after achieving compliance, almost a quarter (24%) of this year’s respondents that claim to be in compliance, believe they do not need to assign any further budget or resources.
Jon Fielding, Managing Director, EMEA Apricorn commented: “With the one year anniversary of GDPR this week, it’s clear that organisations are getting their houses in order, but there still seems to be a long way to go in terms of education and awareness. Organisations need to be mindful that GDPR is an ongoing process and not just a tick box exercise. The most common ways to maintain compliance are to continue to enforce and update all policies and invest in employee awareness on a regular basis. Additionally, encryption is a key component within the compliance “kit”, helping to lessen the probability of a breach and mitigate any financial penalties and obligations that would apply in the unfortunate event of a breach.”
Jon Fielding will be discussing the findings at Infosecurity Europe taking place at Olympia, Hammersmith, London, from 4-6 June 2019 in a strategy talk on ‘Understanding & Leveraging GDPR Regulations to Justify IT Security Spend’ on the 5th June, from 15:20 - 15:45 -https://www.infosecurityeurope.com/en/Sessions/75446/Understanding-Leveraging-GDPR-Regulations-to-Justify-IT-Security-Spend
Headquartered in Poway, California, Apricorn provides secure storage innovations to the most prominent companies in the categories of finance, healthcare, education, and government throughout North America, Canada and EMEA. Apricorn products have become the trusted standard for a myriad of data security strategies worldwide. Founded in 1983, numerous award-winning products have been developed under the Apricorn brand as well as for a number of leading computer manufacturers on an OEM basis.
About the survey
The research was conducted by Censuswide, an independent survey company. Censuswide interviewed 100 IT decision makers in the UK, during April 2019. Respondents to this research came from finance, business and professional services, IT, telecoms, manufacturing and utilities organisations with more than 1,000 employees.
t. 020 3814 2941