IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

How GDPR is going to redefine the cloud

Box's EMEA head talks us through the impact of the new rules

Unless you've been living under a rock for the past year, you're probably aware that the EU's new data protection regulations - also known as GDPR - are shortly going to come into force. GDPR holds organisations to strict standards regarding customer data, with harsh penalties for negligence and abuse.

It's a major issue for European businesses, and it seems like absolutely everyone is talking about it. In fact, along with the Brexit negotiations, GDPR is one of the biggest causes of uncertainty for businesses.

As the senior vice president and EMEA general manger for a cloud storage and content management company, GDPR is understandably high on the list of priorities for Box's David Benjamin. "I personally feel that this is going to be a pretty defining moment in the industry," he told IT Pro. "It's going to be one of those 'inflection points', to use a Silicon Valley term."

One of the most significant parts of the legislation is the penalties for non-compliance. According to the law, if companies aren't abiding by the principles of the GDPR, they will be liable for up to 20 million or 4% of their global annual turnover - whichever is higher.

Despite these eye-wateringly steep fines, Benjamin says that companies are still failing to take GDPR seriously. "Customers I speak to are very aware of the impending May 2018 deadline," he said. "I don't sense, however, there is yet the movement within organisations to - and I hate using the expression - but to become GDPR-compliant. There's still an element of 'wait and see'."

Europe at night

This is reflected by a veritable avalanche of studies showing that companies are still unprepared for the regulations, including a new survey conducted by IT services firm Bluesource which showed that 80% of organisations will face "major challenges" for compliance when they come into effect.

US firms in particular may be caught by surprise, Benjamin said. He pointed to the Equifax breach, which has just been revealed to have affected nearly 700,000 UK citizens. "If that had happened post-May 2018, they would have been subject to a $60 million-plus fine," he said.

"It certainly hasn't filtered through to organisations that sit in the US, and don't necessarily realise that GDPR extends to all European citizens, whether they are captured in a US platform or a US-headquartered organisation or not."

The biggest problem that organisations are having with GDPR compliance, according to Benjamin, is that the regulations are vaguely-worded in a lot of places. While some elements of the rules - such as the need to appoint a data protection officer and notify users of a breach within a given time frame - are clearly laid out, many aspects have a lot of room for interpretation.

Featured Resources

The state of Salesforce: Future of business

Three articles that look forward into the changing state of Salesforce and the future of business

Free Download

The mighty struggle to migrate SAP to the cloud may be over

A simplified and unified approach to delivering Enterprise Transformation in the cloud

Free Download

The business value of the transformative mainframe

Modernising on the mainframe

Free Download

The Total Economic Impact™ Of IBM FlashSystem

Cost savings and business benefits enabled by FlashSystem

Free Download

Recommended

Europe proposes €43 billion Chips Act to tackle semiconductor shortage
Policy & legislation

Europe proposes €43 billion Chips Act to tackle semiconductor shortage

8 Feb 2022
Intel’s €1.06 billion antitrust fine overturned by EU court
Policy & legislation

Intel’s €1.06 billion antitrust fine overturned by EU court

27 Jan 2022
EU agrees on data sharing legislation to accelerate industry-wide innovation
data governance

EU agrees on data sharing legislation to accelerate industry-wide innovation

1 Dec 2021
EU reveals plans to protect whistleblowers from punishment in new legislation
Policy & legislation

EU reveals plans to protect whistleblowers from punishment in new legislation

24 Nov 2021

Most Popular

How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

29 Jul 2022
Cyber attack on software supplier causes "major outage" across the NHS
cyber attacks

Cyber attack on software supplier causes "major outage" across the NHS

8 Aug 2022
Should you take your password manager off the internet?
Sponsored

Should you take your password manager off the internet?

28 Jul 2022