1.
The General Data Protection Regulation
and the Data Privacy Officer
A survey of 310 cyber security professionals
S U R V E Y
Taken during Infosecurity Europe, June 2017

2.
Article 37 of the General Data
Protection Regulation requires
any organization processing
personal data on a large scale
to retain an independent data
protection officer (DPO).

3.
Yes79%
No16%
Don’t Know5%
Is your company preparing for the General Data
Protection Regulation (GDPR) ?

4.
Does your company have a Data Protection Officer (DPO)?
Yes/Outsourced to
third party
11%
Yes/On staff
67%No
22%

5.
Second half of 2018
or beyond
52% 19%
First half of 2018
29%
This year
If you don’t already have a DPO and plan on
hiring one, when will you hire?

6.
18%55% 27%
Yes, in the next
year or two
Yes, in three to
five years
No
Do you think that technology in the form of AI or machine
learning solutions will help tackle the DPO workload?

7.
The fact that a high percentage of
respondents said they had already hired
a DPO is encouraging. GDPR will rear its
head in ways that nobody predicted, so
engaging early and being ready for every
possibility is absolutely crucial.”
— Terry Ray, Imperva CTO
“

8.
LEARN MORE
Get Going on Your GDPR Plan

9.
Imperva is a leading provider of cyber security solutions that protect
business-critical data and applications.