Symantec provides support for companies struggling with GDPR
Cyber security vendor has set aside resources and expertise to firms still working towards compliance
Cyber security company Symantec Corp, has made available resources and expertise to companies still working towards complying with the General Data Protection Rule (GDPR), which went into effect on May 25th 2018.
Recent research from technology analyst IDC found that, despite the urgency created by the GDPR deadline, 71% of organisations believe that a lack of knowledge about the regulations are limiting their compliance. Additionally, 69% are not confident they even know where their personal data is located.
With the law now in effect, those numbers are a stark reminder that every firm needs to focus its resources and attention on compliance or risk the ramifications.
"GDPR is the single largest compliance-driven transformation we've ever seen, and in the short time since it has gone into effect, major complaints have been filed against social media and Internet companies, with claims totaling in the billions of dollars," said Greg Clark, CEO, Symantec.
Clark said the challenges of the cloud generation magnify the difficulties that organisations face as they work to navigate these waters. "That is why we are committed to helping our customers with compliance and reducing the significant risk associated with being a custodian of consumer data," he said.
Symantec recommends all organisations that have yet to fully comply with GDPR immediately take the following procedural steps: bring business and IT leaders together and ensure everyone understands the challenges with GDPR and why they need to make it a top priority and take a full assessment of all data held by the company - files, logs, metadata and beyond, beginning with the most critical data.
The vendor added that once a complete inventory of all data is taken, organisations should develop a data protection strategy which will proactively protect key data assets regardless of their location, a response plan in the event of an incident and a set of processes for ensuring continuous compliance.
Symantec said the most senior leadership within every affected organisation must understand the unprecedented ramifications organisations may face for lack of compliance.