New research commissioned by Kyocera Document Solutions has revealed that public sector organisations in the UK are unware and unprepared for the implications of the EU’s upcoming General Data Protection Regulation (GDPR).
iGov surveyed 161 public sector organisations between March and April 2017 and found that just 59% of respondents are aware of the implications of GDPR for their organisation.
In addition, nearly a third (73%) felt that they are prepared to meet the obligations of document and print management.
The report stated that a lot of work should be carried out to avoid fines of €20m or about 4% of the annual turnover in case of serious security breaches.
A fifth of respondents stated that print security is being impacted by the lack of a ‘joint approach’ in managing multiple solutions.
And, more than a half of respondents said that they are concerned over access and data sharing about their existing print estate and 44% actually have a printing security strategy in place for their organisation.
Kyocera Document Solutions UK Innovation head Eddie Ginja saideventhough cyber security is one of the biggest challenges facing the public sector today, printers and multifunctional devices have traditionally been left at the bottom of the queue when it comes to data security strategies.
Ginja said: “Thankfully, only 8% of organisations had experienced a print-related security breach to date, but this research confirms our fears that print and document management is a security weak spot when it comes to data protection, which is deeply concerning given that GDPR is imminent.
“Without adequate protection, cyber attackers can easily gain access to multifunctional devices (MFDs) and the data they store, potentially then gaining access to unencrypted data available across entire IT networks, bypassing company firewalls in the process.
“Printing and data go hand-in-hand – just think about how much sensitive information is printed or scanned at your organisation every day. As the new fines draw closer, now is a great time to analyse your print security.”
The GDPR is a new regulation, by which the European Parliament, the European Commission plan to strengthen and unify data protection for all individuals within the European Union.
The regulation also addresses the ways in which data can be exported outside of the EU. It was adopted last April and will come into effect in May 2018.
One of the main objectives of the regulation is to give control to European citizens over their personal data and to simplify regulatory environment for businesses through unification of the regulation within the EU.