Only 21% of GCC organizations have operationalized their data privacy program: Protiviti Report

GCC

According to survey conducted by Protiviti Member Firm for the Middle East Region, a mere 21% of the organizations in the region have effectively established a data privacy program. The report highlights the difficulties organizations face as they transition from design to implementation stage during a data privacy program, such as addressing regulatory requirements as well as potential legal risks associated with non-compliance.

Commenting on the launch of the survey report, Ranjan Sinha, Managing Director, Technology & Digital Consulting, Protiviti, said, "Data privacy has emerged as a critical concern for organizations worldwide, and the GCC region is no exception. The survey presents the current state of data privacy programs in the region and a roadmap for organizations to enhance their privacy practices, comply with regulations, and protect their customer sensitive information."

As per the report there is an increase in privacy program implementations across GCC countries with 56% respondents highlighting regulatory requirements as the primary driver along with the need to maintain consumer trust and contractual obligations as the other important driver.

However, findings indicate a lack of coherence in data privacy implementation initiatives, as the responsibility and ownership for the program are dispersed throughout the organization. Merely 27% of organizations have dedicated data privacy departments, while 40% assign data privacy as the primary responsibility of the information security department. The report urges organizational leadership to establish clear privacy-oriented roles, responsibilities, and governance structures and prioritize budget allocation for data privacy programs.

According to Niraj Mathur Managing Director, Security and Privacy Practice, Protiviti “Given our experience working with clients across the globe and especially in the GCC, a generic approach to privacy does not work. Organizations will need to consider their business context, current state, existing capabilities, and risk appetites while strategizing their data privacy program. Any gaps during implementing can have lasting impact due to stringent legal penalties and reputational risk from loss of customer trust.”

Comprehending personal data's locations is crucial for safeguarding and responding to breaches. Notably, 76% of survey participants highlighted data visibility as the main hurdle in maintaining effective privacy programs. Approximately 75% foresee enhancing the Governance, Risk Management, and Compliance (GRC) requirements of their privacy programs as a significant area of investment this year, anticipating that regulatory bodies will conduct routine audits and inspections to oversee organization's adherence to privacy regulations., similar to the roll out of cyber security regulations earlier. However, 43% of the organizations are yet to allocate a budget for privacy programs.

With so much data at play, the ability to track and monitor all the information an organization collects, processes, and stores remains a critical challenge as well. Organizations in the region recognize the critical role of cloud as a digital transformation enabler. Nonetheless, concerns over cloud security remain with 67% respondents expressing concerns about cloud service provider’s ability to maintain clear visibility over personal data.

Ultimately, the survey report calls upon organizations to undertake a comprehensive data discovery exercise to identify and map out the collection, storage, processing, and transfer of personal data within their environment. It’s important that organizations plan their data privacy journey by following a strategic and proactive approach that considers various aspects, such as legal and regulatory requirements, privacy risk management, employee training and awareness, and data breach management.

Access the complete report here.

Conducted over several months, the report sampled over 100 organizations spanning diverse industries, including BFSI, Enterprise, Telecom, and others.

About Protiviti

Protiviti (www.protiviti.com) is a global consulting firm that delivers deep expertise, objective insights, a tailored approach and unparalleled collaboration to help leaders confidently face the future. Protiviti and its independent and locally owned Member Firms provide clients with consulting and managed solutions in finance, technology, operations, data, analytics, digital, legal, HR, governance, risk and internal audit through its network of more than 85 offices in over 25 countries.

Named to the 2023 Fortune 100 Best Companies to Work For® list, Protiviti has served more than 80 percent of Fortune 100 and nearly 80 percent of Fortune 500 companies. The firm also works with smaller, growing companies, including those looking to go public, as well as with government agencies. Protiviti is a wholly owned subsidiary of Robert Half (NYSE: RHI). Founded in 1948, Robert Half is a member of the S&P 500 index.

Only 21% of GCC organizations have operationalized their data privacy program: Protiviti Report

DISCOVER MORE

New MENA study reveals positive transformation in Next-Gen Philanthropy

Dubai is the eighth-most affordable city of the top ten most visited cities worldwide, new data reveals

Nearly Eight out of 10 Emirati consumers prefer gift cards over a traditional gift: YouGov-YOUGotaGift survey

RICS global commercial property monitor, Q1 2024 - UAE

UAE retail investors embrace the AI boom, using AI tools to shape their investments

Water scarcity in South Africa threatens the agricultural sector and food security

New DuneQuixote cyberespionage campaign targets governmental entities in the Middle East and worldwide

Arthur D. Little report projects significant growth in Saudi Arabia’s biotechnology and genomics sector

Multi Level Group, EHang and ADIO seal strategic collaboration to drive eVTOL development in the UAE

Albal Design launches UAE's first science based interior design concept

Victor moves headquarters to Abu Dhabi

FEST Auto and Abu Dhabi University collaborate to accelerate sustainable urban mobility solutions

DDX Global set to unlock enormous potential of real estate tokenization with Desert Pearl

GCC countries stress need to combat religious intolerance

Heads of Aramco, ADNOC and Emirates top Forbes CEO list

Gulf states pledge $100mln in 'urgent' aid for Gaza

VIDEO: UAE tops region in FDI inflows

Sheikh Mohammed departs for Saudi Arabia to attend Gulf-Central Asia Summit

LATEST VIDEO

VIDEO: New Schengen visa rules: Multiple-entry permits, 5-year validity for GCC, Indian visitors

ZAWYA COVERAGE

Abu Dhabi’s IHC secures nearly 15% stake in Colombia’s Nutresa

UAE’s Rakbank posts nearly 30% jump in Q1 2024 net profit

ADNOC makes rare purchase of 1mln barrels Iraqi oil – report

SHUAA Capital appoints ADDED and ADIO director general as chairman

Glencore seeks investment opportunities in Nigerian mining sector

Engie to divest from Morocco's Safi coal plant before 2027

Support for South Africa's ANC near 40% weeks before election, Ipsos poll shows

China offers nearly $1,400 for car trade-ins

Kenyan patients suffer as doctors' strike grinds on

THE BRI REPORT

China’s flagship global infrastructure initiative is changing in the face of potent headwinds