Data is the lifeblood of any organization, and when that is put at risk by employees ignoring company policies around confidential and personal data, it can lead to serious consequences.
Although GDPR compliance and potential fines are grabbing the headlines, this is but one example of the risks companies face. Other potentially damaging risks include reputational damage, loss of customer trust and goodwill, and loss of competitive advantage.
It is essential that companies treat data responsibly and with the respect it deserves. Ensuring that appropriate controls are in place, as well as being prepared for a breach, loss or a "bad leaver," equals being safe-guarded and ready to respond.
A large number of the UK’s 2.55 million businesses are at risk of huge financial penalties, as employees ignore company policies around confidential data. Research from Sharp has identified that one in 12 office workers has had access to confidential information that they should not have had, and nearly a quarter admit to storing work information in the public cloud even though they are not permitted to. File sharing and taking confidential data out of the office were also widespread with nearly a quarter using public file sharing sites without business approval, and a third ignoring office protocol by taking work home to complete. Even the rule makers in HR are flaunting IT policy, with 30 per cent of respondents who work in HR departments admitting to storing information in the public cloud, potentially jeopardising personal data.
http://smallbusiness.co.uk/behaviour-highlights-gdpr-risk-2539637/
