Editorial & Advertiser disclosure

Global Banking & Finance Review® is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

Home > Business > Only Seven Percent of Companies Are on Track for GDPR Compliance

Only Seven Percent of Companies Are on Track for GDPR Compliance

Published by Gbaf News

Posted on May 29, 2018

5 min read

Last updated: January 21, 2026

Swiss government confirms majority stake in Swisscom for security policy - Global Banking & Finance Review — Image depicting the Swiss government building, symbolizing the confirmation of Switzerland's majority stake in Swisscom. This decision highlights the importance of state involvement in telecom for security policy.

Research study reveals lack of expert staff, budgetary constraints, and limited understanding of requirements are the primary reasons for non-compliance

Alert Logic, the leading provider of Security-as-a-Service solutions, today announced data from Crowd Research Partners’ 2018 GDPR Compliance Report that shows only seven percent of companies were on track to achieve European Union General Data Protection Regulation (GDPR) compliance by the May 25, 2018 deadline, with the majority citing lack of expert staff for their failure to comply with the newly-implemented regulation. The study finds the second and third most cited reasons for non-compliance are budgetary constraints and a limited understanding of the GDPR requirements, respectively.

The industry report, co-sponsored by Alert Logic and other cybersecurity providers, benchmarks the readiness of companies to comply with the GDPR, identifies top barriers to achieving readiness, and explores how companies are tackling compliance with the new data privacy law. The report summarises responses from a survey of 531 information technology, cybersecurity, and compliance professionals. The results underscore the widely varying maturity levels of GDPR compliance plans across organisations—and the considerable effort they face in terms of financial costs and man-hours required to implement all the technical and organisational controls required by the GDPR.

The study also found approximately one third of companies reported they will need to make substantial changes to data security practices and systems to comply with the GDPR. Identifying and mapping user data to protected GDPR categories was the top ranked initiative for meeting GDPR compliance—cited by almost three quarters of report respondents. This was followed by evaluating, developing, and integrating solutions that enable GDPR compliance.

“We are seeing a substantial increase in organisations with strained resources, especially cyber-security staffing, who need to comply with regulations like GPDR along with PCI DSS, HIPAA & HITECH, and SOX,” said Bob Lyons, CEO, Alert Logic. “Alert Logic can help these organisations achieve compliance quickly and reduce the risk of stringent fines from GDPR non-compliance—without having to hire more people—through an integrated solution that includes robust security compliance controls and expert services.”

GDPR Breach Detection and Notification

The GDPR introduces a requirement for breach detection and notification not found in other compliance regulations. Lyons added, “With GDPR, organisations have 72 hours to notify authorities, and impacted users in some cases, if a breach is detected. Our cybersecurity experts personally reach out to our customers within 15 minutes if they identify a breach, attacks or suspicious behaviour that could lead to a breach, thus, enabling our customers to maximise their response time prior to the breach notification deadline.”

Download a free copy of Crowd Research Partners’ full 2018 GDPR Compliance Report. Learn more about Alert Logic’s GDPR compliance capabilities and how Alert Logic helps organisations implement a robust compliance program and technical controls without adding complexity.

Research study reveals lack of expert staff, budgetary constraints, and limited understanding of requirements are the primary reasons for non-compliance

Alert Logic, the leading provider of Security-as-a-Service solutions, today announced data from Crowd Research Partners’ 2018 GDPR Compliance Report that shows only seven percent of companies were on track to achieve European Union General Data Protection Regulation (GDPR) compliance by the May 25, 2018 deadline, with the majority citing lack of expert staff for their failure to comply with the newly-implemented regulation. The study finds the second and third most cited reasons for non-compliance are budgetary constraints and a limited understanding of the GDPR requirements, respectively.

The industry report, co-sponsored by Alert Logic and other cybersecurity providers, benchmarks the readiness of companies to comply with the GDPR, identifies top barriers to achieving readiness, and explores how companies are tackling compliance with the new data privacy law. The report summarises responses from a survey of 531 information technology, cybersecurity, and compliance professionals. The results underscore the widely varying maturity levels of GDPR compliance plans across organisations—and the considerable effort they face in terms of financial costs and man-hours required to implement all the technical and organisational controls required by the GDPR.

The study also found approximately one third of companies reported they will need to make substantial changes to data security practices and systems to comply with the GDPR. Identifying and mapping user data to protected GDPR categories was the top ranked initiative for meeting GDPR compliance—cited by almost three quarters of report respondents. This was followed by evaluating, developing, and integrating solutions that enable GDPR compliance.

“We are seeing a substantial increase in organisations with strained resources, especially cyber-security staffing, who need to comply with regulations like GPDR along with PCI DSS, HIPAA & HITECH, and SOX,” said Bob Lyons, CEO, Alert Logic. “Alert Logic can help these organisations achieve compliance quickly and reduce the risk of stringent fines from GDPR non-compliance—without having to hire more people—through an integrated solution that includes robust security compliance controls and expert services.”

GDPR Breach Detection and Notification

The GDPR introduces a requirement for breach detection and notification not found in other compliance regulations. Lyons added, “With GDPR, organisations have 72 hours to notify authorities, and impacted users in some cases, if a breach is detected. Our cybersecurity experts personally reach out to our customers within 15 minutes if they identify a breach, attacks or suspicious behaviour that could lead to a breach, thus, enabling our customers to maximise their response time prior to the breach notification deadline.”

Download a free copy of Crowd Research Partners’ full 2018 GDPR Compliance Report. Learn more about Alert Logic’s GDPR compliance capabilities and how Alert Logic helps organisations implement a robust compliance program and technical controls without adding complexity.