The document discusses the results of a survey of 460 IT professionals about security regulations and privacy guidelines at their organizations. Some key findings include: - 28% of organizations reported being hit by a data breach in the last 12 months, and data breaches are becoming more common. - Regular auditing is crucial for regulatory compliance but 17% only conduct internal audits once a year and 3% every 2-3 years. - 78% of organizations have a data governance program but more investment is needed. Budgets for regulatory compliance make up 15% or less of IT security budgets for 73% of organizations.