Home
About Us
Our StoryContact UsAdvertise With UsOur Media PackOur Team
Latest News
Corporate Social ResponsibilityCATEGORYFinanceCATEGORYInnovationCATEGORYLeadershipCATEGORYLegalCATEGORYM&ACATEGORYStrategyCATEGORYView All Articles
Issues (Magazine)
February 2025LATESTJanuary 2025Issue 12 2024View All Publications
Our Awards
Current AwardsArchived AwardsRecent Winners
SubscribeFREE

© Copyright Acquisition International 2025 - All Rights Reserved.

Article Image - Data Regulation – Time For Businesses to Take Their Head-Out-of-the-Sand
Posted 10th June 2024

Data Regulation – Time For Businesses to Take Their Head-Out-of-the-Sand

Mark Roebuck, DPO and Founder of ProvePrivacy explains how companies struggling to keep up with data regulation adherence demands should look to internal Data Champions.

Mouse Scroll AnimationScroll to keep reading
Let us help promote your business to a wider following.
Chat To Sales See Our Awards

Home » News » News » Data Regulation – Time For Businesses to Take Their Head-Out-of-the-Sand

Data Regulation – Time For Businesses to Take Their Head-Out-of-the-Sand
Data Regulation

The increasingly complex regulatory landscape means businesses have to confront the challenges of adhering to compliance

Mark Roebuck, DPO and Founder of ProvePrivacy explains how companies struggling to keep up with data regulation adherence demands should look to internal Data Champions.

For companies of all sizes, across all sectors, the prospect of keeping up-to-date and adhering to an increasingly complex data regulatory landscape is a daunting one. For those organisations in highly regulated sectors, such as the public sector, education and legal, the pressure to adhere and to ensure that staff understand the nature of compliance and their role in it means it can appear to be an almost impossible task.

As a result, organisations are sticking their heads in the sand and ignoring the issue. The problem is it will not get any better and in fact is likely to get more complex.

The varying cost of adherence

Companies are struggling to work out how they can afford to put into place the processes needed to ensure adherence. This cost comes in a variety of forms. Budgetary restraints impact not just smaller firms but enterprise level too. The implementation of new technology or the management of legacy systems that are needed to conform to regulation can be a costly, but necessary step.

Equally ‘time’ can be a cost that most companies are struggling to come to terms with. This can particularly be the case with SMEs which lack the internal resources to ensure adherence. However, this can also be the case for public sector organisations who often struggle with reduced budgets and the ability to attract the necessary staff.

Remembering why regulations are implemented in the first place

These logistical and financial costs make this seem too big a task for most companies to even contemplate. Even for those attempting to adhere, the temptation to treat the road to compliance as a tick-box exercise is understandable. However, it is important to remember why regulations are introduced in the first place.

Regulations are designed and introduced to confront a particular need or threat that is impacting companies and customers. Therefore, regarding them purely as a tick-box exercise to secure adherence means that companies are missing the point and putting data and customers at risk.

The tick-box route also means that once adherence is secured it tends to be forgotten about, thought of as a completed task, allowing the IT team and the company as a whole can take their ‘foot off the gas’. In reality, regulation has to be an ongoing process.

Current methods mean it is hard for companies to ‘Excel’ at adherence

Alongside the ongoing process of data regulation adherence companies are also struggling with their current regulation solutions. Many are still utilising Excel forms, which whilst recording information cannot be regarded as an effective method of ensuring ongoing adherence nor ensuring data security. Equally, whilst Excel can be used as a risk register, it does not allow companies to identify and subsequently manage risk as part of the same solution, which stifles the adoption of Excel as a holistic solution.

We have seen that the result of a data breach can be disastrous and the number of organisations being impacted is rising. A Government report highlighted that half of businesses (50 percent) and around a third of charities (32 percent) reported having experienced some form of cyber security breach or attack in the last twelve months. This rises to much higher levels for medium-sized businesses (70 percent) and even higher for large companies (74 percent).

So, with more organisations than ever being impacted by data breaches so the cost of a breach also increases. Research has found the average cost of a data breach in the UK averaged at an incredible £3.4 million. Add to this  more research, this time from security company Egress which shows that four-in-ten employees have been sacked as a result of email security breaches it is clear that the consequence of a data breach has never been more costly, for customers, organisations or employees.

The cost of a breach means that Excel and similar programs are no longer effective ways of monitoring security and adherence to regulations. Equally, companies have to take their heads out of the sand hoping the issue will go away – the cost is too high.

Data Champions

It is not all bad news though. Some companies are turning to solutions that help ensure data protection risks are captured and addressed as well as ensuring compliance is part of everyday work.

At the heart of successful compliance are people. Utilising the organisational design of a company and working intimately with employees, by making them ‘Data Champions’ organisations can empower staff to take responsibility for adherence. Too often companies place the responsibility on one person or department to ensure compliance. However, Data Champions working in specific departments throughout an organisation can have a much better overview of where the risk lies and what needs to be implemented to close vulnerabilities.

Making compliance a part of everyday life or as it’s sometimes known ‘data protection by design and default’, means that it becomes a much more manageable task, rather than a daunting one. Alongside this, implementing a solution that can help manage the policies brought in to deal with data protection risks (and also keep a record of who owns the policies as well as, crucially, who has read and understood the policies) means that suddenly companies have a more accurate and comprehensive overview of how the company sits in terms of its adherence to regulation.

So, with Data Champions in place, a solution that allows an overview on one dashboard of risks, reports and policies and adherence part of everyday tasks, keeping all staff members advised on what the latest threats look like and what their role is in ongoing compliance is a logical next step. Education is a key element of adherence. Data Champions can speak to their specific teams to ensure that each member knows what risks impact their department and so data protection by design and default naturally comes into being.

Regulations are not going to go away, in fact for many sectors the regulatory landscape is going to get more complicated and rigorous. Therefore, turning to affordable solutions that can help ensure compliance, whilst empowering employees to take responsibility and keeping data safe is a sensible choice.

Categories: News

Sidebar Image - Our Awards
Our Awards

Discover our award winners and nominate businesses you know deserve recognition!

View Our Awards
Sidebar Image - Our Issues
Our Issues

Keep up to date with industry leading news, and key business features.

View Our Issues
You Might Also Like
Read Full PostRead - Eye Icon
Competitive Risk is Key to High Acquisition Values for Revenue-Stable Tech CompaniesM&A
24/10/2023Competitive Risk is Key to High Acquisition Values for Revenue-Stable Tech Companies

The tech M&A ecosystem is not exclusive to startups and tech superpowers – established companies can still pursue M&A as a viable and profitable exit strategy.

Read Full PostRead - Eye Icon
Ingenious IP LawyerLegal
18/01/2021Ingenious IP Lawyer

The murky world of Intellectual Property is hotly contested, with many law firms handling portfolios on a client’s behalf. As we look once again to those lights of the legal profession, we turn to Santiago R. O’Conor, the Leading Intellectual Property Pros

Read Full PostRead - Eye Icon
Ardian Acquisition of Exclusive Sythesis & Maleic Anhydride IntermediatesFinance
31/07/2015Ardian Acquisition of Exclusive Sythesis & Maleic Anhydride Intermediates

Ardian Acquisition of Exclusive Sythesis & Maleic Anhydride Intermediates

Read Full PostRead - Eye Icon
A10 Networks Files for IPOInnovation
15/04/2015A10 Networks Files for IPO

We take a look at A10 Networks’ IPO in March of last year. A10 Networks has pioneered a new generation of application networking technologies.

Read Full PostRead - Eye Icon
Best for Accounting & Tax Disputes – MoroccoFinance
20/05/2016Best for Accounting & Tax Disputes – Morocco

SEDDIK firm is a firm of Chartered Accountants Consultants, established in Morocco since 1996.

Read Full PostRead - Eye Icon
Carlyle International Energy Partners acquires Romanian business of Sterling Resources’ assetsFinance
01/04/2015Carlyle International Energy Partners acquires Romanian business of Sterling Resources’ assets

Carlyle International Energy Partners acquires Romanian business of Sterling Resources' assets

Read Full PostRead - Eye Icon
What You Could Be Losing Out On By Not Using Hotel Revenue Management TechnologyStrategy
17/11/2020What You Could Be Losing Out On By Not Using Hotel Revenue Management Technology

Several factors such as holidays, weekends, competitor rates, and other market conditions are taken into consideration for predicting the price of a hotel room. A hotel revenue management system will analyse the correct rate at which your hotel rooms should be

Read Full PostRead - Eye Icon
Bang for Your BuckFinance
27/06/2017Bang for Your Buck

Stanmore IP is a small, but mighty, trade mark practice who were recently given the Best in Trademark Protection award. Based in the UK, they specialise in helping businesses to select and protect their trade marks in the UK, the EU and globally via a strong n

Read Full PostRead - Eye Icon
Assessing Mental CapacityInnovation
05/09/2017Assessing Mental Capacity

Assessing Mental Capacity

View More Articles
Advert banner - ACQ - Non-Profit Organisation Awards 2025 AD
Our Trusted Brands

Acquisition International is a flagship brand of AI Global Media. AI Global Media is a B2B enterprise and are committed to creating engaging content allowing businesses to market their services to a larger global audience. We have 14 unique brands, each of which serves a specific industry or region. Each brand covers the latest news in its sector and publishes a digital magazine and newsletter which is read by a global audience.

MEA Markets
LUXlife Magazine
Wealth & Finance International
SME News
Innovation in Business
CEO Monthly
EU Business News
New World Report
BUILD Magazine

MORE BRANDS

Arrow
Hanefeld RechtsanwalteIgnite Rec2RecCadwalader, Wickersham & Taft LLPDB DigitalKaufman Abdel-Aal LLPDorothyAILoeven Law FirmImmigration Advice service (IAS)Sean Randall MorrisThompson Smith and PuxonRiskScoutSnow Leopard FoundationWinrows LawMari Vasan CoachingFreeman Law, PLLCMarquesa ConsultoriaHealth TribeRussell Finex Ltd.AccuracyCooper Grace WardDataleumRise Mobility LtdYolofsky LawUpstream Works SoftwareAdvent NexusFumbiBoyd Resolution Group LlcMarket Street ClinicBench Walk Advisors LLCY2 Learn Driver TrainingChoueh Law FirmDigitalis MedicalTechRoundHunton Andrews Kurth LLPSalleynycole’s Skin & Beauty Boutique