After May 2018, there has been a sudden increase in the cookie disclosure notices almost across all websites. Thanks to the GDPR – General Data Protection Regulation. This act aims to give more control to people over their data and ensure uniform standards of data security across business organizations. GDPR has increased the awareness amongst people and infused in them a need to protect their data. It has empowered people across the EU.
With the implementation of GDPR, organizations have started reporting data breach incidents in large numbers. There has been a 400% increase in the number of reported incidents. It does not reflect any rise in data breach incidents. It shows that previously the majority of cases were not being reported. Inadequate policies account for the majority of these incidents. But the GDPR also gives rights to governments to suspend rights in times of crisis such as the Corona outbreak of 2019.
What does it mean for cybersecurity systems?
For years data security experts struggled with the enormous volumes of data. They could not identify threats, nor could they make effective decisions to combat attacks. With the implementation of GDPR, there is a direct impact on data security systems. Organizations have to update their cybersecurity systems to ensure GDPR compliance. They are now placing advanced AI systems to enhance cybersecurity. These systems can analyze vast volumes of data in seconds, identify potential threats amidst millions of malwares, and reduce the response time to threats.
With fines as high as 20 million euros or 4% of the annual revenue, companies are taking all measures to ensure compliance. It would ensure a stringent security system in place which can detect potential threats and reduce response time. Once a data breach occurs, organizations have only 72 hours to report it. If there is any improper usage of personal data, the person has to be immediately informed. GDPR ensures we understand the fact that privacy and data security is a fundamental right.
In this respect, different nations have taken several measures to ensure compliance. In the UK, the national agency has taken steps to increase the awareness about cybercrimes and data piracy using a system of digital footprint. Germany enacted a new data protection law in line with the GDPR to ensure data protection and compliance. Even countries like the USA and China have implemented laws in line with the GDPR. Apple’s CEO, Tim Cook, praised the GDPR and urged the US government to bring into place a similar law. But is it all sunshine? The answer is No. A significant flaw in the GDPR is that it follows the ‘one size fits all’ principle. As a result, many clauses and areas are left open and vulnerable. Moreover, there is an acute shortage of GDPR specialists or implementation scientists. The world needs more scientists and trained people who can handle complex data security systems, thereby ensuring GDPR compliance. Nevertheless, GDPR has changed the face of cybersecurity, and everyone needs to adapt and make their systems better for good.
Co-Founder & Author of SOC Defense.
- How to Become a SOC Analyst in 2023 - April 22, 2023
- AI and Cybersecurity: Enhancing Protection with Technology and Human Expertise - April 16, 2023
- Coronavirus Cybersecurity Attacks - June 1, 2020
