Monica Dubeau, privacy program director for IBM Security, describes the European Union (EU)’s General Data Protection Regulation (GDPR) as one of the “biggest shakeups” for the industry. The GDPR introduced three key changes that present challenges for enterprises, including redefining data, requiring documentation and immediate reporting. Some organizations, according to Dubeau, are “building privacy into their brand,” seeing this as an opportunity to stand out among the competition. In addition, Dubeau said customers are asking more questions about how their data is being used, but they are not taking the proper precautions to protect themselves, such as using internet of things (IoT) devices that are lacking in security.
