As organizations move from compliance-based to risk-based approaches to privacy operations, the natural question arises: How does privacy risk compare with other risks faced by the enterprise? To investigate, the IAPP Westin Research Center combed through the annual 10-K disclosure statements to the U.S. Securities and Exchange Commission of more than 100 publicly traded companies. The findings? Losing customers’ or employees’ personally identifiable information ranks first among disclosed information-related risks. Find in this new IAPP Westin Center report, "Loss of PII Is Top Digital Risk for Public Companies," how companies rank hacking vs. employee error, which consequences they fear most, and whether the looming GDPR moves the risk needle — plus, find an annex of risk-language used by the world's biggest organizations. (IAPP membership required to access this report.)
If you want to comment on this post, you need to login.