A quarter of marketers (26%) believe their organisations are still unprepared for the introduction of the EU General Data Protection Regulation (GDPR), with just over half (56%) reporting that they feel prepared and 5% believing it’s not their responsibility.
In addition, just two-thirds (68%) of those asked said their business would be GDPR compliant in time for 2018, according to the second edition of the DMA’s ‘GDPR and you’ series of studies into the industry’s awareness and preparedness for the GDPR.
The results show that two-thirds of respondents (66%) have ‘good’ awareness – rising from 53% in June 2016 – and that marketers ‘personal’ feeling of preparedness has increased dramatically from 49% to 71%. However, there is still a clear need for urgency with many marketers not believing their businesses will be compliant before the new rules will come into place.
Chris Combemale, CEO of the DMA group, commented: “May 2018 should be a date that is in every marketer’s diary, giving us around 16 months before the GDPR comes into force. It is concerning that only half of our industry feels their businesses are prepared for the new rules and not that many more believe they will be ready in time. The finish line for GDPR readiness is fixed and the risk to businesses of not being compliant is significant. Our advice is to continue preparations in earnest over the coming year. Not making it across the line in time is not an option.”
While it’s unlikely that Brexit will change GDPR for the UK, the new laws are set to come into force in May 2018 before any exit agreement is finalised. The rules will provide consumers with greater protection while also helping brands to safeguard their own reputation by building long-term relationships with customers’ based on transparency and trust.
Despite some initial confusion about the impact of Brexit on the implementation of GDPR, it’s also reassuring that 83% of companies have not changed their plans to implement GDPR-related changes and 7% have even accelerated these preparations. In fact, when asked for their opinion on the best data protection policy for the UK post-Brexit, almost three quarters (74%) believe we should simply adhere to GDPR anyway – with 7% even calling for even stricter rules to be put in place.
Combemale continued: “The data-driven creative industries are the engine that will continue to drive growth in the UK economy post-Brexit. The status of our relationship with Europe does not change the need for UK businesses to prepare for GDPR and it’s concerning to see that only two-thirds of the industry currently expects to be ready for May 2018. In an increasingly global digital marketplace, Brexit does not change the behaviours that companies must adopt in order to succeed and build long-term relationships with customers based on transparency and trust.”
Charities are being reminded of the need for secure mobile working policies
Guide designed to help charities better understand their responsibilities in relation to donor consent, data protection and legitimate interests
Figures prompt calls for charities to ensure they use all methods possible to protect online transactions and customer data
Going forward monthly updates will be accessible via a new security bulletins portal