• Home
  • News
  • Big Data & Analytics
  • DevOps
  • Security
  • GDPR
  • AI & ML
  • Women in Tech
  • Cloud & Infrastructure
  • CIO
  • Deskflix
  • Events
  • Whitepapers
  • Spotlights
  • IT Leaders 250
  • Research
  • Delta
  • Tech Marketing Hub
  • About Us
  • Newsletters
  • Sign in
  •  
      • Newsletters
      • Account details
      • Contact support
      • Sign out
     
     
    • You are currently accessing Computing via your Enterprise account.

      If you already have an account please use the link below to sign in.

      If you have any problems with your access or would like to request an individual access account please contact our customer service team.

      Phone: +44 (0) 1858 438800

      Email: customerservices@incisivemedia.com

      • Sign in
     
  • Follow us
    • Twitter
    • LinkedIn
    • Newsletters
    • Facebook
    • YouTube
  • Register
  • Events
    • Upcoming events
      event logo
      The Pesky Password Problem: What place do passwords have in the modern workplace?

      In this webinar you'll learn: Why passwords are so easy to hack, and how the bad guys do it. How to craft a secure, risk-focused password security policy. The truth about password managers and multi-factor authentication and how they impact our risk. How to empower your end users to become your best last line of defence

      • Date: 21 Jan 2021
      event logo
      Where the buck stops: Why a shared responsibility model will help you own your cloud security flaws

      This webinar, and accompanying dedicated research, will reveal to what extent organisations are practicing a shared responsibility model for cloud security today and the degree to which IT leaders are aware of what they should be doing to ensure the secure use of their multi- and hybrid-cloud environments.

      • Date: 27 Jan 2021
      event logo
      Leveraging the Cloud to Defeat Data Disasters

      Join us and learn how your IT team can realize many of the powerful advantages of the cloud and solve the operational complexity behind managing data across hybrid and multi-cloud IT environments with centralized management, automation, end-to-end security, and lower TCO.

      • Date: 28 Jan 2021
      event logo
      Deskflix Hybrid and Multi Cloud

      One of the most powerful tools for breaking down silos and integrating resources is cloud computing. But multi-tenancy cloud is not the ideal environment for every application or every class of data and some will need to remain on-prem for the foreseeable future; nor are all clouds equal. Tune in to Deskflix season 1 to hear industry experts speak on the questions you need answered on hybrid and multi cloud.

      • Date: 10 Feb 2021
      View all events
  • Whitepapers
    • LATEST WHITEPAPERS
      Darktrace 120x194
      Cyber AI Response: Threat Report 2019

      This white paper details 7 case studies of attacks that were intercepted and neutralised by Darktrace cyber defense AI, including a zero-day trojan in a manufacturing company's network. Learn how Darktrace Antigena AI Response modules fight back autonomously, no matter where a threat may emerge, extending to the Cloud, Email and SaaS.

      Download
      Darktrace 120x194
      Cyber AI & Darktrace Cloud

      This white paper explores how cloud is a security blind spot for many organisations who struggle with the limited visibility and control in this new environment, where their existing security tools are often not applicable.

      Download
      Find whitepapers
      Search by title or subject area
      View all whitepapers
  • Spotlights
    • Spotlights

      Welcome to Computing's Spotlight section, where we focus in on particularly important themes and topics of enterprise IT.

      Intel logo

       

      Endpoint Management and Security Hub

  • IT Leaders 250
  • Research
  • Delta
  • Tech Marketing Hub
  • About Us
Computing
Computing
  • Home
  • News
  • Big Data & Analytics
  • DevOps
  • Security
  • GDPR
  • AI & ML
  • Women in Tech
  • Cloud & Infrastructure
  • CIO
  • Deskflix
 
    • Newsletters
    • Account details
    • Contact support
    • Sign out
 
 
  • You are currently accessing Computing via your Enterprise account.

    If you already have an account please use the link below to sign in.

    If you have any problems with your access or would like to request an individual access account please contact our customer service team.

    Phone: +44 (0) 1858 438800

    Email: customerservices@incisivemedia.com

    • Sign in
 
  • Finance and Reporting

These are the top 5 concerns IT leaders have about the GDPR

The lack of clarity is making business leaders nervous

Concerns range from compliance to cloud
Concerns range from compliance to cloud
  • Tom Allen
  • Tom Allen
  • 19 June 2017
  • Tweet  
  • Facebook  
  • LinkedIn  
  • Send to  
0 Comments

The General Data Protection Regulation (GDPR) comes into full force in May next year - but confusion is still widespread, and awareness is low. At one of Computing's free events for IT CIOs this month, we heard some of the top concerns the industry has about the new law.

Compliance

The right to be forgotten topped Computing's research into GDPR worries among IT leaders; once such a request has been made, companies will have 72 (business) hours to locate all of a user's personal data in their system. Clearly, that is easier said than done.

Several attendees thought that the system could be simplified by technology. One said, "My hope is that, from a technology point of view, we can apply something that will help us discover where data is and identify it… The onus is on IT for that bit of the GDPR." However, none of the group knew of any technology that would adequately fulfil this function.

Others supported the idea of driving data discovery with a process: having a clear system in place for what to do with personal data that is received (although it was acknowledged that that wouldn't help with existing archived data).

No attendees felt comfortable with the level of data discovery that they currently had.

Another recognised problem was BYOD: firms have no control over the data on their employees' own devices, even if it is personal information about their clients. One CIO expressed a reluctance to stop staff from using their own devices to take notes and pictures, saying, "One of the reasons we're a successful firm is because of that maverick nature." If devices are used in this way - and some attendees admitted that even they were guilty of doing so - then that data could be stored in the cloud.

The cloud

Under the GDPR, the personal data of European citizens must be kept within Europe, and can only be transferred out under certain conditions - but with the cloud, that suddenly becomes a very sticky issue. Who can say where a specific byte of data is kept when it's on Google Drive or Dropbox?

One CIO's company has already implemented a complete block on the public cloud: "There's no way I want anyone to be able to sit at home and log in from their home PC to their work OneDrive account and download the information [that] they want, willy-nilly. We've been paranoid about that for years." He added, "It's a shame because we moved to Office 365 and I look at all of the features of OneDrive that I want to embrace as much as I can, but I have to be really careful about how I do it."

Another attendee said that his company takes it on "a data-centric approach," allowing the use of the public cloud but blocking all personal data.

There was a shared hope that, like Microsoft with OneDrive, more companies would open dedicated European data centres.

 

12

Further reading

UK businesses are still under-prepared for the GDPR - and some don't even know what it is
  • Legislation and Regulation
  • 19 June 2017
Banks to face fines totalling €4.7bn in first three years under GDPR
  • Legislation and Regulation
  • 15 June 2017
GDPR is a big driver for digital transformation, says Workday
  • Cloud and Infrastructure
  • 13 June 2017
Organisations could be swamped with subject access requests under GDPR, warns IBM's GDPR expert Steve Norledge
  • Management
  • 13 June 2017
What is 'personal data'? IT leaders debate the GDPR definition
  • Leadership
  • 12 June 2017
GDPR an opportunity for battered businesses to restore customer trust, argues IBM's Steve Norledge
  • Strategy
  • 09 June 2017
  • Tweet  
  • Facebook  
  • LinkedIn  
  • Send to  
  • Topics
  • Finance and Reporting
  • Leadership
  • Compliance
  • Legislation and Regulation
  • GDPR
  • IT Leaders Club
  • SMB Spotlight
  • smb-networking

More on Finance and Reporting

Pat Gelsinger to replace Bob Swan as Intel CEO
Pat Gelsinger to replace Bob Swan as Intel CEO

Chipmaker says the move is unrelated to Intel's recent financial performance

  • Leadership
  • 14 January 2021
BA faces possible £800m data breach claim

Claim would be the largest group action personal data claim in UK history

  • Legislation and Regulation
  • 13 January 2021
Spooks may no longer hack multiple devices on a single warrant, High Court rules
High Court rules against bulk hacking by police and intelligence agencies

Privacy International celebrates High Court win

  • Legislation and Regulation
  • 08 January 2021
The known unknows of post-Brexit data transfers
The known unknowns of post-Brexit data transfers

With many aspects of the trade deal still to be ratified, organisations that transfer data to and from the EU need to start preparing now

  • Legislation and Regulation
  • 08 January 2021
Over 80,000 UK-registered .eu websites and related emails stop working due to Brexit
Over 80,000 UK-registered .eu websites and related emails stop working due to Brexit

British nationals or organisations who shifts their domain's registration address to somewhere in the EU are eligible to retain their domain

  • Legislation and Regulation
  • 05 January 2021
blog comments powered by Disqus
Back to Top

Most read

Parler data breach: Hackers claim they downloaded everything from Parler before it was taken offline
Parler data breach: Hackers claim they downloaded everything from Parler before it was taken offline
Software errors wipes 'thousands' of arrest records from police databases
Software errors wipes 'thousands' of arrest records from police databases
Delta: Microsoft's identity management lead is under threat
Delta: Microsoft's identity management lead is under threat
BT faces possible £500m claim for overcharging landline-only customers
BT faces possible £500m claim for overcharging landline-only customers
Twitter CEO defends Trump ban while Telegram purges far-right channels
Twitter CEO defends Trump ban while Telegram purges far-right channels
  • Contact
  • Delta
  • Marketing solutions
  • Enterprise IT Events
  • Incisive Media
  • Terms & conditions
  • Policies
  • Careers
  • Twitter
  • LinkedIn
  • Newsletters
  • Facebook
  • YouTube

im_logo

© Incisive Business Media (IP) Limited, Published by Incisive Business Media Limited, New London House, 172 Drury Lane, London WC2B 5QR, registered in England and Wales with company registration numbers 09177174 & 09178013

Digital publisher of the year
Digital publisher of the year 2010, 2013, 2016 & 2017
Loading