Data and securityCyber SecurityOrganisations taking bold steps to build a culture of GDPR compliance

Organisations taking bold steps to build a culture of GDPR compliance

The risk of losing benefits, including bonuses, for failure to comply with GDPR policies is a real possibility for employees at one in four organisations worldwide according to a study

A study from Veritas Technologies has found that the General Data Protection Regulation (GDPR) has the potential to drive major cultural changes in businesses worldwide.

Nearly three in four  respondents plan to incentivise employees to improve data hygiene and take accountability for data compliance.

According to The Veritas 2017 GDPR Report, 88% of organisations around the world plan to drive employee GDPR behavioural changes through training, rewards, penalties and contracts. Almost half (47%) of businesses will go so far as to add mandatory GDPR policy adherence into employment agreements.

Failure to adhere to contractual guidelines could have significant implications. Nearly half (41%) of respondents also plan to implement employee disciplinary procedures if GDPR policies are violated.  A quarter of businesses (25%) would consider withholding benefits—including bonuses—from employees found to be non-compliant. At the same time, 34% say they will reward employees for complying with GDPR policies, as those employees are helping to promote proper data governance within their organisations, which can lead to better business outcomes.

 

Cultural Changes

The report found that the vast majority of respondents (91%) admit that their organisation does not currently hold a culture of good data governance or GDPR compliance. However, as indicated above, companies understand that training is critical to driving cultural changes within their organisations.

The majority (63%) of companies believe all employees must receive mandatory training on GDPR policies. However, respondents were also quick to identify the types of employees that should be trained: 86% believe the IT department must be prioritised, closely followed by business direction and strategy employees (85%), business development/sales/channel employees (84%), legal employees (82%) and finance employees (82%).

“Data is one of the most critical assets within an organisation, yet many businesses are struggling to implement good data hygiene practices—and that often starts with employees,” said Mike Palmer, executive vice president and chief product officer, Veritas. “However, our research shows that businesses are getting serious about driving cultural change within their organisations.”

“As businesses consider deploying new processes and policies including training, rewards and updated contracts in support of GDPR compliance, more employees will understand the role they play in protecting their organisation’s data. And, for employees that fail to take matters seriously, their bonuses and benefits may be negatively impacted.”

 

Benefits of GDPR compliance

While avoiding stringent regulatory penalties and fines is clearly a driver for improving an organisation’s compliance posture, many companies also see major business benefits that go well beyond avoiding such sanctions. The research shows that almost all businesses (95%) see substantial business benefits to achieving GDPR compliance, including better data management across the entire organisation.

Specifically, organisations believe that once they have advanced their compliance standing, they are able to reap the following benefits:

  • Improve data hygiene: 92% of respondents believe that their organisation will benefit from good data hygiene, which helps drive trust in the data and improve data quality, accuracy and policy enforcement
  • Generate more insights: 68% believe that they will gather stronger data insights about their businesses through GDPR compliance, which can play a key role in delivering better customer experiences
  • Save money: 68% think that their organisation will save money
  • Build brand reputation: 59% believe that data compliance will also strengthen their reputation or relationships with their customers
  • Protect data: 51% of organisations believe they will be able to protect data more efficiently
  • Increase revenues: 45% expect to reduce costs, increase revenue or market share with better data management. One in five (22%) think it will ultimately help their organisations have more disposable cash, which can be used to invest in research and development (R&D) or to deploy additional resources to drive innovation
  • Hire more people: A quarter (25%) say enhanced data compliance will allow the organisation to employ more staff to provide better customer service

Related Articles

Housing associations collaborate around cyber awareness

Cyber Security Housing associations collaborate around cyber awareness

6h Austin Clark
Six top security and risk management trends revealed

Cyber Security Six top security and risk management trends revealed

1w Austin Clark
DDoS Defence Demands a Hybrid Approach

Cyber Security DDoS Defence Demands a Hybrid Approach

2w Guest Writer
NHS Digital joins forces with IBM to beef up NHS cyber security

Cyber Security NHS Digital joins forces with IBM to beef up NHS cyber security

2w Austin Clark
HMRC storing voice ID data 'without consent'

Cyber Security HMRC storing voice ID data 'without consent'

3w Austin Clark
Government’s rapid cloud adoption lacks security (Infographic)

Cloud Computing Government’s rapid cloud adoption lacks security (Infographic)

1m Austin Clark
Combatting the cyber security skills crisis: Retraining could help public sector digital transformation

Cyber Security Combatting the cyber security skills crisis: Retraining could help public sector digital transformation

1m Guest Writer
The need for a strategic approach to cyber security purchasing

Cyber Security The need for a strategic approach to cyber security purchasing

2m Guest Writer