No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home Compliance

The True Cost of Compliance

by Peter Merkulov
March 26, 2018
in Compliance, Featured
businessman with his head in a cardboard box with dollar signs

Making Sense of Dollars and Cents

With the upcoming GDPR directive on everyone’s minds, compliance is a hot issue. Many see compliance as an unnecessary additional expenditure. What they fail to realize, however, is that noncompliance costs nearly three times as much as compliance does.

Today, data is more valuable than gold, and organizations are hyperaware of how precious this commodity really is. Data provides organizations with invaluable insight into their operations, competitors and customers. As organizations continue to grow and the demand for data increases, so does the frequency of data movement. This increased movement is directly related to an increase in data vulnerability, putting companies at risk of loss, leaks and theft.

Recognizing this vulnerability, governing entities have begun to implement compliance standards aimed at preventing data from falling into the wrong hands. However, many organizations hear the word compliance and only see dollar signs. Organizations often believe that they are unable to afford the necessary steps to meet heightened compliance standards set forth. Yet, a recent study from Ponemon and Globalscape reports that it is 2.71 times more costly for an organization to not comply with mandates. The average cost of compliance is $5.47 million versus an average of $14.82 million for noncompliance, which is an average difference of $9.35 million annually.

As organizations are tasked with determining if they have the budget to implement required compliance measures, their motivation to comply is driven by the need to balance protecting their valuable data with the need to minimize costs and/or long-term perils resulting from noncompliance.

When an organization fails to meet compliance standards and regulations, increased costs come in the form of issues such as business disruption, productivity losses, revenue losses and fines, penalties and settlement costs. All is not lost! Globalscape and Ponemon identified 12 best practices that, when implemented, reduce total compliance costs for an organization. The study also identified the average savings associated with each best practice.

In today’s market, in which security fails like Equifax’s fill the headlines, it is no longer an option for organizations to be anything less than hyperaware of their compliance initiatives. From 2011 to 2017, the cost of attaining compliance has steadily grown, rising 43 percent in those six years. For any extremely compliance-heavy industry, such as health care, this number has grown by 106 percent in six years. While achieving regulatory compliance can be complicated and expensive, the alternative is likely more costly – not a viable option for an organization concerned about their bottom line.

Unfortunately, there are organizations who elect to delay compliance efforts because of the associated costs. In so doing, they risk incurring large fines and the loss of customer trust, as well as damage to their reputation, all in an effort to avoid compliance-related expenditures. This short-sighted, high-risk strategy will ultimately result in a negative outcome for the organization. The Globalscape and Ponemon study found that, on average, only 14.3 percent of total IT budgets were spent on compliance in 2017 — not much of an increase from the 11.8 percent reported in 2011. This clearly indicates that organizations are underspending on core compliance activities in the short term and aren’t prepared to allot further budget as the years go on.

Complying with data protection regulations is expensive, but when it comes to dollars and cents, it is significantly more economical for an organization to comply with all data privacy directives than to delay the inevitable. With the May 2018 launch of The General Data Protection Regulation (GDPR), these mandates will continue to grow and become more complex. It is no longer a question of if you will be asked to provide proof that your organization is complying with regulations and protecting sensitive data, but when. Can you afford the risk of noncompliance?

You can read more of the findings from The Trust Cost of Compliance with Data Projection Regulations study here.


Tags: GDPR
Previous Post

Navigating KYC in the Nordics, Part 1

Next Post

Deloitte Poll Reveals Maturity Shortfalls in Programs to Manage Third Parties

Peter Merkulov

Peter Merkulov

Peter Merkulov serves as Chief Technology Officer at Globalscape. He is responsible for leading and overseeing the product strategy, product management, product marketing, technology alliances, engineering and quality assurance teams. Merkulov has more than 16 years of experience in the IT security industry, specifically in product strategy and management. Prior to joining Globalscape, Merkulov served as Executive Vice President at Kaspersky Lab North America, where he oversaw the expansion of the business within North America, and was second in command of their North American operations. He also served as their Chief Product Officer, where he drove the adoption, development and execution of long-term product strategy. Merkulov also served as the Vice President of Technology Alliances at Kaspersky Lab. Merkulov is a graduate of Moscow State Institute of International Relations and is fluent in English, Russian and Swedish.

Related Posts

gdpr

UK Resurrects Data Protection Reforms, EU Court Rules on GDPR in Civil Cases

by Jonathan Armstrong and André Bywater
March 15, 2023

Recent courtroom and legislative action in Europe will likely have ripple effects around the world for companies subject to regulations...

eu flag

Preparing Your Company for the Latest GDPR Data Transfer Developments & Upcoming Deadlines

by Kevin L. Coy
November 30, 2022

An EU court decision and legislative moves in the U.S. and UK make compliance with privacy regulations increasingly difficult. Arnall...

minidata_b

Honey, I Shrunk the Data: How to Keep Customer Info on a Need-to-Know Basis

by Parker Poe
November 30, 2022

It may be tempting to hoard the data you have gathered on your customers, but an increasing number of regulations...

uk ico data access

UK’s Data Protection Regulator Signals Crackdown on Access Request Violations

by Jonathan Armstrong and André Bywater
October 5, 2022

Data privacy laws in the EU and UK established the right of individuals to find out what personal information organizations...

Next Post
Deloitte Poll Reveals Maturity Shortfalls in Programs to Manage Third Parties

Deloitte Poll Reveals Maturity Shortfalls in Programs to Manage Third Parties

Compliance Job Interview Q&A

Jump to a Topic

AML Anti-Bribery Anti-Corruption Artificial Intelligence (AI) Automation Banking Board of Directors Board Risk Oversight Business Continuity Planning California Consumer Privacy Act (CCPA) Code of Conduct Communications Management Corporate Culture COVID-19 Cryptocurrency Culture of Ethics Cybercrime Cyber Risk Data Analytics Data Breach Data Governance DOJ Download Due Diligence Enterprise Risk Management (ERM) ESG FCPA Enforcement Actions Financial Crime Financial Crimes Enforcement Network (FinCEN) GDPR HIPAA Know Your Customer (KYC) Machine Learning Monitoring RegTech Reputation Risk Risk Assessment SEC Social Media Risk Supply Chain Technology Third Party Risk Management Tone at the Top Training Whistleblowing
No Result
View All Result

Privacy Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2022 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe

© 2022 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT