Thursday, 17 May 2018 09:27

Eight days before GDPR, Australian firms seem unprepared


More than 90% of Australian IT decision-makers, who took part in a survey that looked at their readiness to meet the standards of the EU General Data Protection Regulation, that takes effect on 25 May, have admitted that their companies are not yet ready to meet the standards demanded by the new law.

Additionally, just over a fifth (22%) said the organisations they represented could comply with the GDPR's provisions, which require them to disclose all personal data collected on individuals within one month of request.

The survey, conducted by security firm Webroot, covered 600 IT decision-makers in the US, the UK and Australia - 200 from Australia - who worked for companies that had between 100 and 499 employees.

It looked at how businesses of this size in the three countries were adjusting to new data security measures in order to meet compliance requirements.

A majority (96%) of the Australian participants agreed that their fellow employees were equipped to comply with the GDPR and the Australian data breach regulation; the latter came into force on 22 February. The same percentage were of the opinion that the number of data breaches would drop as a result of the two laws.

The survey also found that 78% of the Australian decision-makers who were working for companies that were doing business in the EU felt they could comply with rules requiring them to disclose all personal data collected on individuals within one month of request.

But those in the UK were less confident than those in the US or Australia about being able to provide all information on EU citizens; only 18% of UK decision-makers were confident they could provide the information within a month of being asked.

As far as employee training on compliance was concerned, the survey found that there was a big gap between IT staff and other Australian employees.

Ninety-four percent of Australian IT decision-makers were confident their employees were equipped to comply with the GDPR and the Australian data breach law.

But only about a quarter of Australian organisations (24%) had trained IT staff on GDPR compliance while 43% had trained – or were in the process of training - IT staff about regulation and compliance with the Australian law.

Webroot's senior information security analyst Dan Slattery said: "Both our local and global regulatory landscapes are tightening, and we’ll likely see more regulations come our way in the coming years as citizens are looking for more privacy.

"The cyber threat landscape is becoming more complex every day, and hackers are constantly finding new ways to take advantage of the myriad of data created by the growing number of connected devices.

"Data protection and cyber security strategies need to become business priorities, and it is important Australian organisations partner with experts in this domain if they want to keep building trust among their customers and employees, and regulators.”


Australia is a cyber espionage hot spot.

As we automate, script and move to the cloud, more and more businesses are reliant on infrastructure that has high potential to be exposed to risk.

It only takes one awry email to expose an accounts payable process, and for cyber attackers to cost a business thousands of dollars.

In the free white paper ‘6 steps to improve your Business Cyber Security’ you will learn some simple steps you should be taking to prevent devastating malicious cyber attacks from destroying your business.

Cyber security can no longer be ignored, in this white paper you will learn:

· How does business security get breached?
· What can it cost to get it wrong?
· 6 actionable tips



iTWire can help you promote your company, services, and products.


Advertise on the iTWire News Site / Website

Advertise in the iTWire UPDATE / Newsletter

Promote your message via iTWire Sponsored Content/News

Guest Opinion for Home Page exposure

Contact Andrew on 0412 390 000 or email [email protected]


Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.



Recent Comments