More than half of organisations subject to GDPR collect more data than the regulation permits.

A Data Risk and Security report released by the security software company Netwrix has revealed that companies are failing to follow GDPR and security best practices. The survey of just over a thousand respondents revealed that security professionals are often bypassing many of the six stages of the data lifecycle. While security issues are mitigated at some stages, many important stages are being overlooked, resulting in vulnerable systems.

The data storage stage proved to be the most challenging stage for ensuring data protection, according to the report. A quarter of organisations reported discovering data outside of secure locations. It took 43% of these companies several days to discover the incident and 23% of these companies several weeks. These statistics contradict the finding that 91% of organisations surveyed claim their sensitive data is stored securely.

According to the report, almost two thirds of companies subject to the GDPR exceed data collection limits outlined in law. About half of organisations ignore the security practice of reviewing access rights to data on a regular basis.

Full article on https://o3h2.com/gdpr-news/more-than-half-of-organisations-subject-to-gdpr-collect-more-data-than-the-regulation-permits-a-study-has-found/

#gdpr #regulation #data #yokdata