RiskUKSeptember2017
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
News Update<br />
“Employees pose greatest EU GDPR<br />
compliance risk” highlights latest<br />
Bluesource study<br />
Six-in-ten organisations view their employees<br />
as the biggest threat to successful EU General<br />
Data Protection Regulation (GDPR) adherence,<br />
while four-in-ten believe that their current IT<br />
systems could also pose compliance risks.<br />
That’s according to a GDPR awareness survey<br />
conducted by Bluesource.<br />
The study also highlights that, even though<br />
half (50%) are taking steps to prepare for<br />
GDPR compliance, nearly a third (30%) still<br />
believe that the new rules will not affect them.<br />
One fifth (20%) are not sure what to do next.<br />
Over 80% of respondents stated that, with<br />
the deadline for EU GDPR compliance rapidly<br />
approaching, they’re facing a major challenge,<br />
including increased security and governance<br />
around cloud environments such as Office 365<br />
and shadow IT. 80% of those surveyed feel<br />
that ‘Big Tech’ vendors have a responsibility to<br />
ensure that their own systems will meet the<br />
GDPR’s requirements, as well as those of their<br />
customers, but are unsure as to how this will<br />
be achieved in practice.<br />
The increased financial impact of fines and<br />
the expected frequency of their enforcement is<br />
a major concern for most of those surveyed.<br />
An overwhelming 90% indicated that a noncompliance<br />
fine would result in reputational<br />
damage for their organisation and a loss of<br />
trust among customers, suppliers and staff.<br />
Data breaches are already the second<br />
greatest cause of concern for business<br />
continuity professionals and, once this new<br />
legislation comes into force, bringing with it<br />
higher penalties than already exist, this level<br />
of concern is only likely to increase.<br />
Organisations need to make sure they’re<br />
completely aware of the requirements of the<br />
GDPR, and also make certain that their data<br />
protection processes are robust enough to<br />
meet these requirements.<br />
On a more positive note, 45% of those<br />
surveyed have already nominated a member of<br />
a specific departmental function – including<br />
legal, compliance and IT security – to be solely<br />
dedicated to privacy and GDPR initiatives.<br />
However, 20% haven’t considered selecting a<br />
nominated individual as yet, while 35%<br />
suggest that finding a suitably qualified and<br />
experienced individual will be a challenge.<br />
Sean Hanford, information governance<br />
consultant at Bluesource, commented: “Our<br />
research across UK organisations indicates<br />
that a gap remains between EU GDPR<br />
awareness and action. There must be a swift<br />
attitude change towards data protection. Staff<br />
clearly require better skills such that they can<br />
become more data savvy.”<br />
Her Majesty’s Inspectorate of<br />
Constabulary’s remit extended by<br />
Home Office to encompass Fire and<br />
Rescue Services<br />
Building on the experience of Her Majesty’s<br />
Inspectorate of Constabulary (HMIC) in<br />
inspecting and reporting on the efficiency and<br />
effectiveness of all police forces in England<br />
and Wales, Nick Hurd (Minister for Policing<br />
and the Fire Service) has announced that it<br />
will now extend its responsibility and also<br />
inspect Fire and Rescue Services in England.<br />
In order to reflect this new programme of<br />
inspections, HMIC will change its name to Her<br />
Majesty’s Inspectorate of Constabulary and<br />
Fire and Rescue Services (HMICFRS) and<br />
expand to become a fully-integrated<br />
inspectorate for the police and Fire and<br />
Rescue Services. HMICFRS will have a new<br />
logo to reflect its new identity.<br />
Her Majesty’s Chief Inspector of<br />
Constabulary, Sir Thomas Winsor (pictured),<br />
said: “This marks a momentous chapter in the<br />
160-year history of HMIC. We will draw on our<br />
experience of inspecting and reporting on<br />
police forces to develop a framework to assess<br />
the efficiency and effectiveness of the 45 Fire<br />
and Rescue Services in England. In the same<br />
way that police officers run towards situations<br />
that others would instinctively avoid, the<br />
events of recent times remind us all about<br />
exactly how much we rely upon the bravery<br />
and professionalism of our firefighters. I pay<br />
tribute to their courage.”<br />
Sir Thomas will be appointed Her Majesty’s<br />
Chief Inspector of Fire and Rescue Services, in<br />
addition to continuing in his role as Her<br />
Majesty’s Chief Inspector of Constabulary. Her<br />
Majesty’s Inspector Zoë Billingham will act as<br />
the lead for the inspection programme. Each<br />
HMI will have responsibility for a number of<br />
Fire and Rescue Services.<br />
Nick Hurd explained: “Creating an<br />
inspectorate for Fire and Rescue Services in<br />
England will support the continuous<br />
improvement of this critical public service to<br />
make sure that it’s as professional, effective<br />
and efficient as possible. It will also ensure<br />
that, where problems are identified, actions<br />
can be taken by the Fire and Rescue Services<br />
to overcome them. I’m confident that HMIC<br />
will hold Fire and Rescue Services to the<br />
highest standards possible.”<br />
HMICFRS inspections will be specifically<br />
designed to promote improvements.<br />
7<br />
www.risk-uk.com