SolarWinds MSP has released findings from a European General Data Protection Regulation (GDPR) survey of IT suppliers and end users that reveals progress, but remaining work, on the road to GDPR readiness.
The research queried 250 executives at resellers, MSPs, consultancies, and other channel firms in the UK, Germany, France, the Netherlands, and Italy; and over 140 IT leaders at UK end-user companies. According to the findings, 36 percent of the surveyed IT suppliers and 37 percent of the surveyed end users are in the process of implementing plans for readiness. However, only ten percent of those same IT suppliers and only three percent of the end users felt they were fully ready.
From 25 May, 2018, any firm operating in the European Union (EU) or any firm that handles personal data of people who reside in the EU, could face fines of up to €20 million-or four percent of annual global turnover-if they fail to comply with these new data protection rules.
With the focus on data protection, IT supplier respondents expect spending increases to come primarily from cloud storage, encryption, and two-factor authentication, alongside services such as risk assessments and network audits.
The findings showed that the majority of surveyed end users plan to utilize resellers to help them fill these types of technology gaps. The top five technology areas to which IT leaders said they have dedicated, or will dedicate, additional investment in order to become compliant were: risk assessments (36 percent), cloud/online backup and recovery (31 percent), encryption (30 percent), storage (29 percent) and mobile device management (26 percent).
"Our main aim with this GDPR research report was to provide an overview of what factors IT providers and MSPs should be considering in the critical period running up to May 2018, helping them to pivot in the right way with their services," said Tim Brown, vice president, security architect, SolarWinds MSP. "The results showed that while many IT providers and end users are some ways from being ready, many have made a good head start. MSPs have an opportunity to help serve in a trusted advisory role to their customers as they look in particular at how technology and consultancy can help address GDPR-readiness factors."