“Compliance requirements like GDPR are forcing changes in the way data is handled in many organizations,” Jan Hertzberg, a privacy consultant, tells author Arthur Piper. “For CAEs, it is not just about data privacy, but data integrity throughout the business.”
The many new data privacy regulations “highlight the need for organizations to get their data protection practices in order,” says Pam Hrubey of Crowe in this issue’s “Eye on Business.” Hrubey says organizations tend to have common challenges relating to data protection. She and Mike Maali of PwC consider those challenges and how organizations can safeguard information, as well as internal audit’s role in privacy governance.
In the Pulse report, concern about GDPR compliance escalates in line with the size of the respondent’s organization. In organizations with more than 50,000 employees, 62 percent rated compliance as a high concern compared to 29 percent who rated it that way overall. This suggests that larger organizations are more likely to have international operations. However, for others with international operations, there also could be some misunderstanding of when these new rules apply, as they are based not on the location of the organization, but on the location of the customer whose data is being gathered. To read the full 2019 Pulse report, visit http://bit.ly/pulse2019.
On another note, it’s time once again to recognize high achievers in the profession. Nominations for Internal Auditor’s 2019 Emerging Leaders are now open. See the opposite page to learn how to nominate. Tell us who are the best and brightest in your internal audit functions and look for the article featuring this year’s leaders in October.