Cybersecurity survey reveals significant GDPR readiness gap

A recent independent survey found that there are still GDPR readiness shortcomings, with more than half (57%) of cybersecurity professionals concerned about compliance with the standard.

The survey by Varonis Systems, Incexplored readiness and attitudes toward the upcoming EU General Data Protection Regulation (GDPR) implementation deadline polled 500 cybersecurity professionals in the UK, Germany, France and U.S.

With just a few months before the May 25, 2018 deadline, 60% of respondents in the EU and 50% of respondents in the U.S. say they face some serious challenges in being GDPR compliant. Among other notable findings:

       38% of respondents report that their organisations do not view compliance with GDPR by the deadline as a priority.

       74% believe that adhering to the GDPR will give them a competitive advantage over other organisations in their sector.

       For UK respondents, 58% think that implementing data protection by design poses the greatest challenge in meeting the GDPR, followed by the right to erasure/”to be forgotten.” 

Varonis CMO David Gibson said: “It’s encouraging to see progress made surrounding the GDPR, and yet it’s deeply concerning that more than half of the organisations surveyed continue to face compliance challenges,”

“The GDPR represents a significant change in the way data must be handled. It’s alarming that so many respondents simply aren’t worried, especially given that many organisations are not tackling the biggest problems and best practices around data collection, management and protection. Ignorance is not bliss when it comes to the GDPR, and organisations that have fallen behind in their preparations must ramp up their compliance activities or they could take a serious financial hit once the regulations take effect.”

Other interesting findings include:

  • One in four U.S. respondents believe their firms need not comply with GDPR.
  • 36% of respondents in the UK, 35% in Germany and 42% in France report being in compliance.
  • In the UK, 51% of respondents say their organisation is more than 50% complete in their compliance process.

GDPR Summit Series is a global series of GDPR events which will help businesses to prepare to meet the requirements of the GDPR ahead of May 2018 and beyond.

Further information and conference details are available at