SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
Story image
Privacy considered a 'business imperative' - report
Wed, 16th Feb 2022
FYI, this story is more than a year old

Privacy is mission-critical, with 91% of businesses in Asia Pacific considering privacy a business imperative, a new study has found.

Cisco's 2022 Data Privacy Benchmark Study – an annual global review of privacy corporate practices, on the impact of privacy on organizations and their views towards data privacy – showed that privacy investment continues to rise and organisations see a high return on investments from privacy spending.

Privacy has become a true business imperative and a critical component of customer trust for organisations around the world. Ninety-one percent of the respondents in Asia Pacific said they would not buy from an organisation that does not properly protect its data, and 93% indicated that external privacy certifications are important in their buying process.

“Privacy continues to grow in importance for organisations in Asia Pacific, with 96% of organisations in the region saying they are reporting one or more privacy-related metrics to their board, and privacy investment rising with an average budget increase of 18%,” says Dave West, president, Asia Pacific, Japan, and Greater China, Cisco.

“These trends are more pronounced in the region when compared to the rest of the world, with markets like Japan (100%), Thailand (55%), and South Korea (45%) leading the pack in terms of increase in privacy budget," he says.

"At Cisco, we believe privacy is a fundamental human right, and we need security and transparency to protect it, so it is encouraging to see that organisations in Asia Pacific are not only considering privacy a business imperative, but also seeing its benefits to the business.

Privacy's Return on Investment remains high for the third straight year, with increased benefits for small to medium size organisations. More than 60% of respondents felt they were getting significant business value from privacy, especially when it comes to reducing sales delays, mitigating losses from data breaches, enabling innovation, achieving efficiency, building trust with customers, and making their company more attractive.

Respondents estimate their ROI to be 1.8 times spending on average. While this continues to be very attractive, it is slightly less than last year (1.9 times spending). This could be due to ongoing needs in responding to the pandemic, adapting to new legislation, uncertainty over international data transfers, and increasing requests for data localisation.

Privacy legislation continues to be very well received around the world even though complying with these laws often involves significant effort and cost (e.g., cataloging data, maintaining records of processing activities, implementing controls – privacy by design, responding to user requests). In Asia Pacific, 86% of all corporate respondents said privacy laws have had a positive impact, and only 3% indicated the laws have had a negative impact.

As governments and organizations continue to demand further data protection, they are putting in place data localisation requirements. Ninety-three percent of survey respondents in Asia Pacific said this has become an important issue for their organisations. But it comes at a price – across the region, 91% said that localisation requirements are adding significant cost to their operation.

“When it comes to storing data, organisations must ensure that they comply with the data localisation legislations in the jurisdictions where data is being collected," says West.

"Last year, Cisco expanded its Duo data center presence to include Australia, Japan and Singapore. The new cloud data centers allow Duo to better respond to the needs of our Asia Pacific customers, particularly in the government, financial and insurance industries, where data sovereignty continues to be one of the key requirements," he says.

Finally, when it comes to using data, 93% of survey respondents in Asia Pacific recognise that their organisation has a responsibility to only use data in a responsible manner. Nearly as many (87%) believe they already have processes in place to ensure automated decision-making is done in accordance with customer expectations.

Yet, Cisco's 2021 Consumer Privacy Survey showed many individuals want more transparency and 56% of consumers surveyed globally are concerned about the use of data in AI and automated decision-making. Forty-six percent of consumers surveyed felt they cannot adequately protect their data, chiefly because they do not understand what organisations are collecting and doing with their data.