Human error is the biggest threat to cyber security, finds poll

A new poll carried out at the recent GDPR summit London found that 88 per cent of people in attendance  thought human error presents the biggest threat to cyber security. But the poll also found unanimous agreement that GDPR (the General Data Protection Regulation, enforceable from May 25th) will be a positive driver for building trust with customers.

The audience at the GDPR summit came equipped to the event with no shortage of professional interest concerning  data protection – indeed data protection and compliance officers made up a large chunk of the audience.

All the more concerning then, was that no less than 87.5 per cent did not think that their organisations had built in the principle of privacy by design into its business processes. In fact, privacy by design, the principle by which privacy is a core foundation element to new products rather than a bolt-on extra, is a key part of GDPR.

No less than 78 per cent did not think their organisation had processes in place to deal with subject access requests – another important element of GDPR.

On the other hand, 100 per cent agreed that building trust with customers through GDPR will have a positive effect on their organisation. The idea that GDPR can be an opportunity because it can foster trust was a common theme at the summit.

There was also unanimous agreement that GDPR had forced each individual to rethink data security.

Yet, only 48 per cent of respondents said they were approaching GDPR as an opportunity, the rest approached it as a challenge.

When asked what was their biggest challenge regarding GDPR so far, 77 per cent said understanding the complexities of the regulation, 17 per cent said training staff and six per cent ensuring the necessary budget is there.

22 per cent said they understood the obligations put on employers by GDPR, ten per cent said they didn’t and 68 per cent said they understood some of the obligations.

66 per cent said they saw data management as a challenge for their organisation, 46 per cent said their organisation was investing in technology to support the GDPR compliance strategy and 81 per cent said they have not dealt with a data breach before.

The next GDPR Summit London takes place on 23rd April and will host a wealth of speakers across three streams inlcuding, general business, marketing and HR. For more information on attending, visit the website.

Join our free-to-attend digital event, Last Thursday in Privacy, addressing data protection, privacy and security challenges including working from home, COVID-19, global regulations and more. Visit

We have been awarded the number 1 GDPR Blog in 2019 by Feedspot.