Report – Enterprise@Risk: 2007 Privacy and Data Protection Survey

A recent report, called “2007 Privacy and Data Protection Survey” (available online), has been released by Deloitte:

“The survey results indicate an increasing understanding within the organization of what is required to address the risks of managing and protecting private data. However, it also demonstrates that the challenge remains for the enterprise privacy function to move from the current reactive mode to a more proactive and strategic approach.”

This survey describes key findings in these areas:

• Privacy Incidents and Breaches requiring notification
• Incident Response – time allocation
• Incident Response – notification
• Privacy Programs – implementation
• Privacy Function – reporting structure
• Privacy Function – resource allocation
• Enterprise Training
• Technology Solutions
• Encryption Technologies
• Professional Profiles

An interesting point, made in this survey, is that “Given the varying adoption rates and current maturity of the enterprise privacy programs, the risks associated with privacy and data protection can be expected to continue for some time to come.”

--- NOTE: my original HP blog can be found here ---