85 Percent of Companies Not Fully Ready for the GDPR, Survey Says
The Capgemini report added that 63 percent of U.S. respondents stated they will be largely or completely compliant, with 'a mixed picture across Europe.'
May 21, 2018 at 04:41 PM
3 minute read
The original version of this story was published on Corporate Counsel
Photo credit: Ivan Marc/Shutterstock.com
With the EU's General Data Protection Regulation taking effect later this week, 85 percent of firms in Europe and the United States will not be ready to fully comply on time and one in four will not be fully compliant by the end of this year, according to a recently released report.
The report, “Seizing the GDPR Advantage: From Mandate to High-Value Opportunity,” is from Capgemini's Digital Transformation Institute. France-based Capgemini is a global legal tech consultant.
The report, which came out last week, seems to contradict other recent studies that place compliance figures at a higher level.
Still the company argues that the new law creates new opportunity “for organizations who get it right.”
For example it found 39 percent of consumers have increased their spend with firms that are protecting their personal data.
That conclusion coincides with one from IBM's Institute for Business Value, which recently released a survey that found a majority of companies saw the new law as an opportunity that could help them improve privacy and data security, and serve as a “spark for new data-led business models.”
The Capgemini survey included 1,000 executives and 6,000 consumers across eight countries—the United States plus seven European nations.
With the Friday deadline approaching, the report said 63 percent of U.S. respondents stated they will be largely or completely compliant.
The report said there is “a mixed picture across Europe” however. British businesses are the most advanced, despite only 55 percent reporting they will be largely or completely compliant. Spain at 54 percent, Germany at 51 percent and the Netherlands at 51 percent are close behind. Of the eight countries surveyed, Sweden seems to have the most work to do, with just 33 percent of Swedish firms saying they will be compliant on time.
The research suggests that some companies are overlooking both a possible business opportunity as well as the consequences of noncompliance.
Nearly one-third of firms indicated they are focusing on compliance only, and not looking for a competitive advantage. Although non-compliant organizations face fines of up to 4 percent of annual revenue, nearly 19 percent said ensuring they are prepared is not a priority.
In other key findings, the report said:
- The GDPR is an opportunity waiting to be tapped—individuals are more willing to engage with, and be more loyal to, organizations that protect data. When convinced, individuals have increased spend with an organization by as much as 24 percent.
- But if consumers are unhappy with organizations' GDPR compliance performance, over 70 percent said they are prepared to decrease spend, stop doing business with the organization, and warn their friends.
- To convert the GDPR from mandate to opportunity, organizations must take a series of steps, ranging from educating customers and citizens and winning their trust, to building a culture of respect for personal data within the organization.
“Executives now have a great chance to use GDPR to create a customer-first privacy strategy,” said a statement from Willem de Paepe, global GDPR leader at Capgemini. “Beyond gaining consumer confidence and increased spending, knowing exactly what data is held allows firms to use analytics more effectively and improve operations.”
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View AllTrending Stories
- 1How I Made Partner: 'Develop a Practice Area You Really Care About ,' Says Jennifer Gniady of Stradley Ronon
- 2Indian Billionaire Gautam Adani Indicted in Brooklyn for Alleged Orchestration of $250 Million Bribery Plot
- 3St. Ivo: Patron Saint of Lawyers
- 4Eagle Pharma Founder Sues Company to Recoup Cost of SEC Investigation
- 5GC Conference Takeaways: Picking AI Vendors 'a Bit of a Crap Shoot,' Beware of Internal Investigation 'Scope Creep'
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250
