As the European Union implements the much-awaited General Data Protection Regulation (GDPR) to synchronize data privacy laws for its citizens, most U.S. firms, including healthcare companies, are still working to comply with the rigorous regulation.
GDPR, which containing 99 articles and 173 recitals, has key requirements that directly impact the way organizations implement IT security, thus addressing the key security tenets of confidentiality, integrity and availability of data.
According to the latest forensic data analytics survey, only 48 percent of all industries have a plan to comply with GDPR and only 25 percent of U.S. healthcare industry firms.
“It is imperative for U.S. firms to plan and continue their efforts towards compliance to safeguard the continuity of business within the EU and avoid substantial penalties because of non-compliance,” Doug Brown, founder of Black Book Market Research LLC.
For North American companies with operations in the EU, data security measures will now have to work alongside legal and compliance teams to ensure maximum adherence to GDPR.
“With data privacy concerns, particularly medical information on the rise and stringent regulatory requirements like GDPR coming into force, organizations have no choice but to redefine the way they approach data management,” said Brown.
Non-compliance with GDPR can result in heavy fines and increased regulatory actions. Organizations that collect personal data must be able to prove that they consistently and reliably comply with GDPR privacy and security principles.
A new study from Black Book Market Research LLC reveals that only 29 percent of U.S. organizations surveyed are embracing the GDPR globally as an opportunity to improve privacy, security, data management or as a catalyst for new business models, rather than simply a compliance issue or impediment.
GDPR is a fairly complex piece of legislation with far-reaching impact not just within the European Union but the United States and the world as well.
U.S. companies operating in the EU will have to change the way they capture, process and use data of EU nationals. “It is a complicated process involving in-depth understanding of healthcare data privacy laws and policies in particular.”
GDPR applies to all the personal data of any employee, consumer, patient and/or customer who are in Europe.
“With strong data protection strategies in place, consumers will place greater confidence in businesses and businesses will minimize the financial fall-out of a breach,” said Brown.
From a survey of nearly 380 U.S. companies, Black Book reports the top 15 GDPR solutions and services rated on 20 key performance indicators of consultant and client satisfaction.
The U.S.-based advisory firms receiving the top honors from North American clients on GDPR assessment, risk mitigation, readiness, compliance and response actions include (with U.S. headquarters location identified):
- Data443 Risk Mitigation (North Carolina)
- SailPoint (Texas)
- CIPHER (Florida)
- TrustArc (California)
- DXC Technology (Virginia)
- Caserta (New York)
- Trustwave (Illinois)
- SysArc (Maryland)
- FTI Consulting (Maryland)
- Templar Shield (California)
- TBG Security (Massachusetts)
- SecureWorks (Texas)
- Microsoft (Washington)
- HPE (California)
- IBM (New York)
About Black Book Market Research LLC and Black Book Security
Black Book Market Research LLC, its founder, management and staff do not own or hold any financial interest in any of the vendors or public relations firms covered and encompassed in the surveys it conducts. Additionally, Black Book does not contract for, barter, exchange or accept direct services from any public relations firm mentioned in the rankings. Black Book reports the results of the collected satisfaction and client experience rankings in publication and to media prior to vendor/firm notification of rating results and does not solicit vendor/agency participation fees, review fees, inclusion or briefing charges, consultation requirements and/or vendor collaboration as Black Book polls clients.
Since 2010, Black Book Market Research LLC has polled the vendor and service firm satisfaction in the software/technology and managed services sectors around the globe.
Detailed results on the cybersecurity rankings, see: https://blackbookmarketresearch.com/health-data-security-and-privacy or www.blackbooksecurity.com.
*** This is a Security Bloggers Network syndicated blog from Cipher Cyber Security Blog authored by Marc von Mandel. Read the original post at: http://blog.cipher.com/cipher-distinguished-as-a-top-15-american-based-gdpr-advisor