Most Indian firms (71 per cent) believe the EU’s General Data Protection Regulation (GDPR) will help in bringing a sense of privacy in business and boost innovation in ideas, according to a survey. They also said the regulation will help provide better delivery to their clients, the survey by Deloitte in alliance with the Data Security Council of India (DSCI) revealed. GDPR, which came into effect from May 25, is a data protection legislation which lays down rules for processing and free movement of personal data of EU citizens. The survey, which analyses the state of preparedness of Indian companies basis the rules mandated under GDPR, said organisations that are GDPR ready will gain a competitive advantage, as they will be able to use personal data in their innovations and digitisation.
The areas where it will help include providing better customer experiences (60 per cent), enhance productivity of internal operations (54 per cent), personalisation of product and services deliveries (47 per cent) and creation of new products and services (46 per cent).
In addition, the survey noted that small and mid-size EU companies are likely to open up for business possibilities to Indian firms, given the ease of data transfer between organisations. “GDPR brings in a renewed focus to data privacy. While this is a new compliance imperative, it also provides a competitive advantage for businesses,” said Vishal Jain, partner, Deloitte India.
Even as 28 per cent of the small organisations are yet to initiate their journey towards GDPR, 71 per cent of survey respondents said that this regulation will help bring a sense of privacy in business and innovation in ideas. “Given EU GDPR, and impending India’s data protection law, stepping up focus on data protection practises and capability building, is a key imperative to satisfy expectations of customers and consumers,” said Rama Vedashree, chief executive officer, DSCI.
While Right to Data Portability, Right to Erasure and Right to Restriction of Processing were recognised as most challenging data subject rights, 62 per cent of respondents felt avoiding legal and contractual liabilities, fines and penalties as the biggest motivator for compliance followed by the need to get a competitive edge.
The IT/BPM sector was found to be the most responsive sector in terms of taking any steps towards GDPR readiness with 84 per cent of IT organisations having started readiness journey. This was followed by health and e-commerce sectors with 81 per cent and 80 per cent organisations initiating their process, respectively. The survey results are based on responses from 58 companies, from sectors such as IT)/BPM, BFSI, manufacturing, telecommunications, pharmaceuticals, healthcare and oil and energy.