The Business Magazine - B2B Business News - Site Logo
The Business Magazine March 2024
Read now
PICK YOUR EDITION
,

South: Blake Morgan warns 90% are not ready for new data rules

20 September 2017
Share
Law-default

A survey by leading law firm Blake Morgan has revealed nine out of 10 businesses have still not made crucial updates to their privacy policies – a key requirement ahead of major changes to data protection laws.

As time runs out to comply with the General Data Protection Regulation (GDPR), the survey found many organisations may be at risk of non-compliance, risking regulatory action and reputational and brand damage for not getting their house in order.

With the massive growth of the digital economy, GDPR represents the biggest shift in data protection for many years and all organisations which retain or process personal information will need to comply. The new law focuses on greater transparency as to how personal data is collected, retained and processed, makes organisations more accountable and gives enhanced rights to those whose personal data is being collected and processed. 

It is backed up with a significantly higher fines regime for the most serious breaches of up to £17 million or 4% of worldwide turnover (whichever is greater) and a requirement to notify personal data breaches within 72 hours where they are likely to result in a risk to people's rights and freedoms.

Blake Morgan’s research revealed just over 10% of those surveyed had updated their privacy policies to comply with the new law, while only a quarter had put in place systems to ensure data security breaches were notified in line with GDPR.

The findings showed almost 40% of organisations surveyed had not taken steps to prepare for the new regulations, while more than a third were not confident they would be able to comply with  GDPR by May 25 next year when the law comes into force.

A key finding was that just over a fifth of businesses surveyed were not aware of GDPR and the forthcoming and related ePrivacy Regulation and what these will mean for their organisation.

Simon Stokes, a partner specialising in data protection law at Blake Morgan, said: “Our survey highlights that a significant proportion of organisations across the public and private sectors are still underprepared for these major changes to data protection law.

“There appears to be a genuine confusion among many business leaders about what the new law means and how to achieve full compliance.

“Some of the survey comments highlight a desire for clearer guidance and the mountain of work that many organisations believe they are facing because of the sheer volume of data and a limited timescale.

“With the clock counting down to the law coming into force, we would recommend a focused effort by businesses to get to grips with the changes and implement a strategic plan of action.

“GDPR Compliance is good corporate housekeeping.  Not only will it avoid running the risk of financially and reputationally damaging fines or sanctions – ultimately it will assure the public’s trust in your organisation at a time when data privacy and security are more important than ever before.  As the UK's data protection regulator ICO has recently highlighted GDPR is essentially about trust.”

Important findings included:

  • Just 13% had updated privacy policies, one of the significant requirements of GDPR.
  • 23% said they were unaware of the new data protection laws despite the looming deadline of May 25, 2018.
  • 39% had not taken any steps at all to prepare for the new law – leaving just months to act.
  • 38% were not confident they would be able to comply with GDPR by 25 May.
  • 21% did not currently have a senior person in place responsible for data protection.
  • 76% had not put in place systems to ensure data security breaches are notified in line with GDPR.
  • 77% had not reviewed their data processing contracts which will be under greater scrutiny under GDPR.
  • 42% were unaware that the rules on direct marketing and the use of internet cookies are likely to change with the forthcoming ePrivacy Regulation which also has a target implementation date of May 25, 2018.

Blake Morgan has launched a free guide, GDPR: A Practical Guide to Achieving Compliance, which gives detailed analysis on key changes on the way and helpful advice on actions businesses can take.


Related topics

Related articles

Latest Deal Ticket

view more
Padel centre operator PadelStars (Hampshire)
has received investment from
Golf and leisure operator Dwellcourt Group (Surrey)
April 2024
UNDISCLOSED
Who's behind the deal?

Upcoming events

view more
01
May

South Coast Property Forum: Networking Lunch

Ennios Ristorante
Southampton
More info
23
May

Thames Valley Tech Forum: Networking Drinks

Malmaison Hotel
Reading, RG1 1JX
More info
06
Jun

South Coast Property Awards 2024

Hilton Southampton
Utilita Bowl
More info
12
Jun

Leadership Roundtable: Developing strategies for financial returns over the next decade

Herrington Carmichael, Farnborough Aerospace Centre, GU14 6XR

More info
18
Jul

Thames Valley Tech & Innovation Awards 2024

Reading FC Conference & Events
Select Car Leasing Stadium, Reading
More info
26
Sep

Thames Valley Property Awards 2024

Ascot Pavilion
Ascot Racecourse
More info
03
Oct

South Coast Tech & Innovation Awards 2024

Hilton Southampton
Utilita Bowl
More info
07
Nov

Thames Valley Deals Awards 2024

Reading FC Conference & Events
Select Car Leasing Stadium, Reading
More info
21
Nov

Hampshire Business Awards 2024

Farnborough International
Exhibition & Conference Centre
More info

Related articles

The Business Magazine Group Limited © Copyright 2024. All Rights Reserved.
South West & Midlands
South East