The Federation of Small Businesses (FSB) has revealed that up to 90% of small businesses are not ready for the General Data Protection Regulation (GDPR) which comes into force on 25 May 2018. With 85 days left before the regulation comes into force it seems just eight percent of small businesses have completed their preparations. Paul Edon, Director at Tripwire commented below.
Paul Edon, Director at Tripwire:
“Time is fast running out for all businesses to be GDPR compliant and this could drive organisations to invest in straight to the point solutions. These tend to be marketed heavily at addressing the more prescribed aspects of the regulation. However, to ensure comprehensive coverage, it would be wise to ensure there is a strong foundation of security in place. This requires organisations to know where the critical data lives. Organisations then need to monitor those critical systems for unauthorized changes or vulnerabilities. Knowing your system integrity, or lack of, can also compliment your incident response efforts.
The technologies that are monitoring the security state of your assets can also monitor your GDPR compliance state and will ensure the systems are adequately prepared for the regulation. The heavy fines imposed will act as a good reminder for organizations that there is serious money on the line for a lack of adequate controls in the face of a data breach.”