IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

New study shows global privacy investments increasing

Companies must still try harder on cookie consent

Abstract image of a digital padlock on a tablet to symbolise user privacy

Organizations are investing more in privacy protection globally, according to research published today by privacy management software company TrustArc. Nevertheless, it still found significant room for improvement in key areas, including cookie consent management.

The company surveyed people worldwide for its 2021 Global Privacy Benchmarks Report, including executives, managers, full-time non-managerial employees, and members of the privacy team. It found performance improving on the privacy front and that companies were eager to do more. The proportion of companies planning big-ticket privacy investments of $1 million or more grew to 48% in 2021. This is up from 28% in 2020.

This increased focus on privacy showed up in internal programs. The number of companies with dedicated privacy offices jumped 17 percentage points to 83%. More companies also said that privacy was now a core part of their business strategy. That proportion increased 7 percentage points from 37% to 44%.

TrustArc also noted a marked improvement in attitudes to privacy on its privacy index, which it compiles based on respondents' answers to core privacy questions. These include whether their board of directors regularly reviewed privacy matters and whether they sufficiently trained employees in privacy issues. It also assessed confidence in key privacy outcomes among their customers, employees, and partners. 

The median score on the privacy index jumped from 62% to 70% during the last year, while the 75th percentile score — the average score for companies getting an "A" grade — jumped from 79% to 85%.

Related Resource

The technology of trust

How to protect your most valuable commodity

The technology of trust- whitepaper from OktaDownload now

Organizations in the US are more confident in protecting employee and customer data, at 82% compared to 74% in Europe. This could be a sign that stateside companies have upped their game following the imposition of the wide-ranging California Consumer Privacy Act, which came into force on January 1, 2020.

Companies might be paying more attention to privacy, but there is still work to be done. Over a third of respondents said they had suffered a breach in the last three years, while 27% reported their company suffered a large-scale cyber security attack.

One area where companies must try harder is cookie consent. This regulatory requirement mandates that companies collect visitor consent when serving cookies via a website. Only 23% of companies work with stakeholders across all departments to ensure that their consent solution meets regulatory requirements and business objectives. Just 46% of respondents said their cookie consent solution was "fully done."

Featured Resources

Activation playbook: Deliver data that powers impactful, game-changing campaigns

Bringing together data and technology to drive better business outcomes

Free Download

In unpredictable times, a data strategy is key

Data processes are crucial to guide decisions and drive business growth

Free Download

Achieving resiliency with Everything-as-a-Service (XAAS)

Transforming the enterprise IT landscape

Free Download

What is contextual analytics?

Creating more customer value in HR software applications

Free Download

Recommended

Deploying flexible data protection to support cloud workload placement
Whitepaper

Deploying flexible data protection to support cloud workload placement

10 Mar 2022
Ten ways to protect your company from the next big data breach
data breaches

Ten ways to protect your company from the next big data breach

18 Feb 2022
Europol ordered to delete huge cache of unlawfully stored data
data protection

Europol ordered to delete huge cache of unlawfully stored data

11 Jan 2022
Grindr given €6.5 million GDPR fine for selling special category user data without consent
General Data Protection Regulation (GDPR)

Grindr given €6.5 million GDPR fine for selling special category user data without consent

15 Dec 2021

Most Popular

Europe's first autonomous petrol station opens in Lisbon
automation

Europe's first autonomous petrol station opens in Lisbon

23 May 2022
Nvidia pauses hiring to help cope with inflation
Careers & training

Nvidia pauses hiring to help cope with inflation

23 May 2022
Open source packages with millions of installs hacked to harvest AWS credentials
hacking

Open source packages with millions of installs hacked to harvest AWS credentials

24 May 2022