British Businesses Are Unaware Of Data Protection Laws

Almost two-thirds of British businesses are unaware they could face fines of up to €20million with the introduction of new data protection laws, according to a survey done by YouGov for national law firm Irwin Mitchell.

The survey asked 2,129 businesses if they had heard about new General Data Protection Regulation (GDPR) rules, with 62% saying they had not.

At the moment, UK businesses can be fined up to £500,000 for infringing data protection laws. However, this upper limit is

However, this upper limit is due to skyrocket to €20million or 4% of a company's global turnover, as of 25th May 2018. The report said it was "striking and concerning" that, although some businesses said they were aware of the upcoming changes, very few were aware of just how high the new fines could be.

Smaller businesses were least aware and so most at risk of being hit with large fines: only 22% said they had heard of the rules, compared to 43% of medium-sized and 56% of large businesses.
 
Other key findings:

  • Only 57% of financial services companies knew about the changes, with media and marketing companies towards the bottom of the list, at 38%.
  • When asked about the possible impacts of these new fines, almost a fifth of the businesses surveyed said they would go out of business.
  • Almost a quarter said they thought it was unlikely or very unlikely that they would even be aware of a data breach if one occurred.

Although the new laws are being enforced from Brussels, Brexit won't exempt British businesses from the changes: "It's important to understand that Brexit does not mean that GDPR compliance efforts can stop. The government has made it clear that GDPR will be the law in the UK both before and after Brexit," said Daniel Hedley, a partner at Irwin Mitchell.

"Any businesses that have put their compliance efforts on hold following the referendum result should restart them immediately," he said.

There were a record number of fines in the UK for data breaches in 2016: the number of fines almost doubled in 2016 to 35, totaling £3.2million, up from £541,000 in 2011. Both the number and value of fines are predicted to rise after the new rules are implemented in 2018.

The new rules will force businesses to be more transparent about how customer data is collected and stored, and all data breaches will have to be reported to regulator the Information Commissioner's Office within three days.

Business Insider:

You Might also Read:

GDPR Guidance For May 2018:

Three Ways To Prepare Your Business For GDPR:

The GDPR Effect On Brexit:

 

« Find Your Digital Risk
Ukraine Accuses Russia Of Ransomware Attack »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Secure Recruiting International (SRI)

Secure Recruiting International (SRI)

SRI is an industry leader in Information Security , Networking, Wireless and Storage recruitment.

Ikerlan

Ikerlan

Ikerlan is an R&D technology centre specialising in areas including embedded systems, industrial automation and industrial cybersecurity.

Positive Technologies

Positive Technologies

Positive Technologies is a leading global provider of enterprise security solutions for vulnerability and compliance management, incident and threat analysis, and application protection.

Atempo

Atempo

Atempo is a leading independent European-based software vendor with a global presence. We provide solutions to protect, store, move and recover all your data.

AnubisNetworks

AnubisNetworks

AnubisNetworks is one of Europe’s leading threat intelligence and email security suppliers.

IoT Security Institute (IoTSI)

IoT Security Institute (IoTSI)

IoT Security Institute is an academic and industry body dedicated to providing frameworks and supporting educational services to assist in managing security within an Internet of Things eco-system.

Lunio

Lunio

Lunio makes the internet a safer and more reliable place for everyone trying to grow their business by automatically getting rid of fake clicks, traffic, and leads on all ad platforms.

MyCena

MyCena

MyCena has developed a complete system of security, control and management for decentralised credentials.

DoQubiz Technology

DoQubiz Technology

DoQubiz is using the idea of security through obscurity to develop their proprietary Fractal Security Engine that implements a highly resilient data protection protocol.

Seccuri

Seccuri

Seccuri is a unique global cybersecurity talent tech platform. Use our specialized AI algorithm to grow and improve the cybersecurity workforce.

CyberXpert

CyberXpert

CyberXpert is your cybersecurity partner for the public and private sector in Belgium.

Cybecs Security Solutions

Cybecs Security Solutions

Cybecs was founded to address rapid technological advancement, changing business models, global privacy regulations, and increasing cyber threats for global organizations.

Munio

Munio

Munio is a leading Fortified IT Support and Cyber Security companies in the south east of the UK.

Inholo

Inholo

Inholo offers tools to manage the risks of synthetic realities, starting with an AI-photo detection service.

5S Technologies

5S Technologies

5S Technologies is a regional IT solutions and services provider based in Cary, NC and serving the Carolinas.

Lightpoint Global

Lightpoint Global

Lightpoint Global is a bespoke software development company. We also provide a spectrum of services such as IT consulting, business analysis, QA and testing, and DevOps services.