Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Compliance

Amendments to EU Data Protection Laws Start Leading to Changes

SAN FRANCISCO — RSA CONFERENCE 2012 Tufin Technologies, a company that offers solutions for automated security policy management and risk mitigation, released the results of a quick survey this week, after speaking to 100 network managers on the topic of recently announced updates to the EU’s Data Protection legislation.

SAN FRANCISCO — RSA CONFERENCE 2012 Tufin Technologies, a company that offers solutions for automated security policy management and risk mitigation, released the results of a quick survey this week, after speaking to 100 network managers on the topic of recently announced updates to the EU’s Data Protection legislation.

Tufin polled the network managers in response to the January 2012 announcement by European Commissioner for Justice that outlined plans to enhance data protection rights for individuals across Europe, and increase the responsibility and accountability of organizations handling records containing the information of EU citizens. If adopted, the new legislation would apply to all organizations that do business in Europe.

The draft guidelines reflect a growing concern about the way in which personal details are captured, handled and stored in today’s highly complex information age. Proposed changes include severe fines of up to 2% of revenues for privacy violations and a requirement that, under certain circumstances, organizations report privacy breaches to authorities and affected individuals within 24 hours of the breach being noticed

With that said, forty-two percent of the 100 network security managers sampled by Tufin said the proposed changes led to increased risk awareness within their organization; 34% stated that their attitude towards Continuous Compliance had changed as a result, and 54% believe that automating audits would reduce the organization’s risk of violating the law.

Feedback from survey respondents was just as interesting as the statistical data: one IT security professional said that good company security standards would assist in this regard, while another professional favored a strict compliance strategy, with “data security awareness program across the organizations – and online monitoring of compliance checks – helping in reducing the risk of fines due to non-compliance.”

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Expert Insights

Related Content

Audits

Out of the 335 public recommendations on a comprehensive cybersecurity strategy made since 2010, 190 were not implemented by federal agencies as of December...

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Cyberwarfare

U.S. fighter jets successfully shot down the high altitude spy balloon launched by and belonging to China.

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Compliance

The three primary drivers for cyber regulations are voter privacy, the economy, and national security – with the complication that the first is often...

Privacy

Meta was fined an additional $5.9 million for violating EU data protection regulations with WhatsApp messaging app.