Discrepancies between data sanitization policy creation and execution put data at risk

2020-02-07 05:30

Although 96 percent of the 1,850 senior leaders within large organizations have a data sanitization policy in place, 31 percent have yet to communicate it across the business, according to a Blancco survey.

Although 68 percent of respondents felt that ownership of data sanitization policies is clearly communicated within their organization, when asked who was responsible for their implementation, 18 percent of enterprises stated the DPO, 18 percent the Head of Operations, 17 percent the Head of IT Operations and 11 percent the CISO. This lack of clear ownership could suggest enterprises consider data sanitization to be a "'checkmark"' exercise that must be done to satisfy compliance or operational requirements and that they are not taking data risks seriously.

A third of the enterprises surveyed also felt that flexible workers were the least likely to comply with data sanitization policies, while 40 percent believed contractors or freelancers were the least likely to understand or comply with their data sanitization policy.

Thirty-three percent of respondents in the U.S. and Canada also believe that flexible workers, who work at home or remotely, are the least likely to comply with data sanitization policies - implying that they may pose a security risk.

Despite 97 percent of U.K. companies having a data sanitization policy in place, more than a third have yet to communicate it across the business.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/6S7tyCq344Y/

#policy