Given that GDPR comes into affect in less than eleven months, it is shocking that 41% of non-IT decision makers are ignorant of the impact it may have on them. (See findings from the 2017 Risk: Value report commissioned by NTT Security.)

The added protection that GDPR offers to individuals and their privacy, not to mention potential non-compliance fines, means that all organizations should be taking this as a serious issue. Not only should businesses understand GDPR's legal implications, but they should take the crucial early step of understanding how data is used and where it exists in all corners within their organizations.

Businesses need to wake-up and realize the impact GDPR will have on their operations, as well as how they use and store data.