Total Tests:

Analysis Shows Poor GDPR Compliance in European Websites

By Kevin Townsend for SecurityWeek
Thursday, May 30, 2019

It is difficult to draw clear conclusions from this survey - but two things do stand out. Firstly, not a single European country displays complete GDPR conformance across all its websites. Secondly, website operators seem to draw a distinction between security and compliance. Website security issues are given higher importance (an overall 6.75% failing) than cookie protection and privacy policy issues (78.25% and 51.5% failing respectively).

Ilia Kolochenko, CEO and founder of ImmuniWeb, sees the same distinction. "We can see laudable efforts aimed to improve web application security and adhere to GDPR requirements in European companies. However, there is a long road before the majority of organizations start valuing actual security above paper-based compliance, thereby providing users with the privacy and security they truly deserve."

It will be several years before we see the real effect of GDPR on European data protection. The different national regulators are laboring under a common security problem: triaging many thousands of alerts. Overall, there have already been hundreds of thousands of breaches and complaints, but few fines. One often-quoted figure is that there has been $57 million levied in GDPR fines so far - but once the single Ä50 million fine levied by CNIL against Google, it becomes a much smaller figure. The real fines have not yet filtered through the system. Read Full Article


Book a Call Ask a Question
Close
Talk to ImmuniWeb Experts
ImmuniWeb AI Platform
Have a Technical Question?

Our security experts will answer within
one business day. No obligations.

Have a Sales Question?
Email:
Tel: +41 22 560 6800 (Switzerland)
Tel: +1 720 605 9147 (USA)
*
*
*
*
Your data will stay private and confidential