Roughly half of healthcare CIOs — 53 percent — indicated they would be 80 to 90 percent in compliance with the European Union's General Data Protection Regulation by May, according to a joint survey by IT outsourcing service provider Harvey Nash and professional services firm KPMG.
The EU's new data protection rules, which went into effect May 25, apply to anyone who handles European citizens' personal information, including addresses, credit card numbers, biometric data and other information that may be traced back to an individual. The law, which is stricter and broader than HIPAA, will affect businesses of all sizes worldwide that use European citizens' data in their services.
To assess IT leadership's preparedness for GDPR compliance, Harvey Nash and KPMG surveyed nearly 4,000 CIOs and technology leaders across 84 countries about their journey to meet the EU's new rules. Although the majority of healthcare respondents said they would be mostly prepared by May, only 14 percent expected to be completely in compliance.
Here's how 17 industries stacked up when CIOs were asked how far they expected their GDPR program to be by the end of May 2018. The sectors are ranked by how many respondents indicated they would "still be on the journey" to compliance:
1. Telecommunications: 26 percent
2. Pharmaceuticals: 29 percent
3. Technology: 30 percent
4. Business/professional services: 31 percent
5. Healthcare: 33 percent
6. Financial services: 34 percent
Global average: 38 percent
7. Power and utilities: 40 percent
8. Leisure: 41 percent
8. Retail: 41 percent
10. Transport/logistics: 42 percent
10. Oil and gas: 42 percent
12. Manufacturing/automotive: 44 percent
13. Charity/nonprofit: 45 percent
14. Construction/engineering: 47 percent
15. Government: 49 percent
16. Education: 53 percent
17. Broadcast/media: 57 percent
To access the 2018 Harvey Nash/KPMG CIO Survey, click here.
More articles on cybersecurity:
Congressional leaders to HHS: It's unclear if troubled cybersecurity center 'still exists'
Former IBM security exec joins Protenus as CFO: 3 things to know
HITRUST releases certification program for NIST cybersecurity framework
© Copyright ASC COMMUNICATIONS 2018. Interested in LINKING to or REPRINTING this content? View our policies by clicking here.