May 16, 2019 SOURCE: PR NewsWire

DataGrail Research Reveals 70% of Privacy Professionals Agree Their Systems Will Not Support New Privacy Regulations

SAN MATEO, Calif., May 16, 2019 /PRNewswire/ -- DataGrail, the privacy management platform purpose-built for the European (GDPR), Californian (CCPA) and impending privacy regulations, today announced the publication of "The Age of Privacy: The Cost of Continuous Compliance." The report benchmarks the operational impact of the European General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), as well as sharing insights into lessons learned and attitudes toward privacy regulations.

"Businesses without a European presence were not impacted by the GDPR. However, with the CCPA fast approaching, US businesses without GDPR are experiencing the same challenges that multinational companies did with GDPR," said Daniel Barber, Co-founder & CEO, DataGrail. "Most companies reported taking at least seven months to achieve GDPR readiness, but now with CCPA only seven months away, they realize their systems will not support CCPA and other forthcoming privacy regulations. Companies will need to integrate and operationalize their privacy management to avoid the time-consuming and error-prone manual processes to comply with these regulations."

DataGrail surveyed more than 300 U.S. privacy management decision makers; including IT, operations, security, legal, and risk and compliance professionals. Key findings from "The Age of Privacy: The Cost of Continuous Compliance" include:

GDPR Compliance Took Longer Than Expected

    --  Only half of companies achieved self-reported compliance before the May
        25, 2018 deadline.
    --  Most companies took seven months or longer to achieve readiness.

Even GDPR Readiness is Costly

    --  Two-thirds of companies assigned dozens, or even hundreds, of employees
        to manage GDPR compliance. Based on survey results, it's likely the
        average organization spent 2000 - 4000 hours in meetings preparing for
        GDPR -- more than a full year of work.
    --  Half of privacy management decision makers spent at least 80 hours
        personally preparing for GDPR, and another 80 hours to sustain
        compliance -- also a full month of work.

Privacy Rights Requests Are Time-Consuming and Error-Prone

    --  Half of companies use manual processes to manage GDPR privacy rights
        requests, such as the right to be forgotten.
    --  Two-thirds of companies have processed at least 100 requests in the past
        year, across dozens of business systems and third-party services, and
        most of them have at least 25 employees involved in request management.
        That's thousands of touch points with the potential to introduce human
        error -- the overwhelming majority of privacy professionals are working
        to reduce the risk of manual error in these requests.

CCPA Compliance Programs Face the Same Challenges as GDPR Programs

    --  Two-thirds of privacy professionals believe it will take less than six
        months to prepare for CCPA, even though most reported it took seven
        months or longer to prepare for GDPR. Even worse, technology adoption
        rates for CCPA are lower than they were for GDPR -- companies are
        primarily training employees to manage privacy regulations -- increasing
        cost and risk of ongoing compliance.

Companies Will Be Challenged by the Future of Privacy Regulations

    --  Most companies are approaching privacy regulations on a case-by-case
        basis; two-thirds of privacy professionals agree the systems they have
        put into place will not support new regulations.
    --  90% of companies plan to hire at least three new employees in the next
        two years to manage privacy regulations, but only one-third of companies
        are automatically updating their data inventory.

"It is evident from this research that most companies still rely on piecemeal technology solutions and manual processes, when they should be turning to privacy management solutions purpose-built for privacy regulations," said Barber. "As companies turn their attention from GDPR to CCPA and beyond, they must operationalize sustained compliance to reduce risk, provide transparency for their customers, and control operational costs."

Download the "Age of Privacy: The Continuous Cost of Compliance" report

About DataGrail

DataGrail is the first purpose-built privacy management platform that ensures sustained compliance with the GDPR, CCPA, and more. DataGrail directly integrates with more than 100 business systems, such as Salesforce, Adobe, and Oracle, enabling companies to discover and map personal data in seconds--not weeks or even months. DataGrail's direct integrations allow companies to operationalize the privacy request workflow in minutes and unify email preferences across all customer facing applications. Customers include Databricks, G2, and SaaStr. To learn more, please visit datagrail.io or follow DataGrail on Twitter and LinkedIn.

View original content to download multimedia:http://www.prnewswire.com/news-releases/datagrail-research-reveals-70-of-privacy-professionals-agree-their-systems-will-not-support-new-privacy-regulations-300851495.html

SOURCE DataGrail

Related News

Major Conferencing Provider iotum says Client Privacy Must Be Protected

COVID-19 Reinforces Need for Federal Consumer Data Privacy Laws

Spirion Introduces the Industry's First Data Discovery Solution that Protects Sensitive Information Using Differential Privacy

New report shows consumers want privacy, are unaware of new data privacy regulations

Dathena Raises $12M Series A Round to Drive Global Adoption of AI-Powered Data Privacy and Security Solution

California Voters Decisively Approve Prop 24, The California Privacy Rights Act

Harvard Researchers Recommend Federal Legislation to Standardize and Increase Consumer Protections for Financial Data Privacy and Security

Bloomberg Law Looks At 2021's Top Privacy & Data Security Issues

View all News

Related Procurements

Deadline: Dec 31, 2069

59--CIRCUIT CARD ASSEMB

Totcal cancellation no FY20 funding

Deadline: Oct 1, 2024

Microelectronics Innovation for Next-generation System Advancement and Validation (MINSAV) Advanced Research Announcement (ARA) with Calls

This is to post questions and answers and OSD Briefing from Industry Day.

Deadline: Oct 31, 2024

Air Superiority Technology Broad Agency Annoucement

This Broad Agency Announcement (BAA) is for the Air Force Research Laboratory Munitions directorate (AFRL/RW) in support of Air Superiority Technolgoy. Operations Security (OPSEC): General OPSEC procedures,...

View all Procurementsp

Agenda

June

FranceParc des Expositions de Paris Nord Villepinte ZAC Paris Nord 2, 93420 Villepinte – France (Halls 5a – 5b – 6)

Eurosatory 2024, 17 - 21 June 2024, Parc des Expositions de Paris Nord Villepinte ZAC Paris Nord 2, 93420 Villepinte – France (Halls 5a – 5b – 6)

Eurosatory 2024 There can be no sustainable world without peace and security. Founded in 1967, the exhibition...

May

Paris Marriott Rive Gauche & Conference Center

Future Artillery, 21-23 May 2024, Paris Marriott Rive Gauche & Conference Center, France

DELIVERING FIRES IN THE MULTI-DOMAIN BATTLESPACE As artillery reasserts itself as the ‘King of Battlefield’ in the wake...

May

United Arab EmiratesADNEC (Abu Dhabi National Exhibition Centre), Abu Dhabi, Al Khaleej Al Arabi St - Al Rawdah - Al Ma'arid - Abu Dhabi, UAE

ISNR Abu Dhabi 2024, 21-23 May 2024, ADNEC (Abu Dhabi National Exhibition Centre), Abu Dhabi, Al Khaleej Al Arabi St - Al Rawdah - Al Ma'arid - Abu Dhabi, UAE

ISNR ACCELERATING TRANSFORMATION IN THE NATIONAL SECURITY ECOSYSTEM ISNR Abu Dhabi is the region’s most trusted...

View All Events

Related Companies

AAR

Raytheon Company

Bell Helicopter Textron Inc.

View All Companies