More than three quarters of security professionals would back a UK data-breach disclosure law, a survey has revealed.
A European directive which would make companies obliged to inform customers and regulators of data security breaches was backed by 77 per cent of security professionals, in a recent Ipsos MORI poll conducted by database security firm Secerno.
The European Commission is expected to pass such a directive this year, although it may be some years before this becomes UK law.
The survey also found that of those supporting the move, 49 per cent felt companies should be forced to disclose a data breach immediately, a sentiment that 82 per cent of UK consumers agreed with.
Paul Davie, founder of Secerno, said the matter was one of public confidence.
“A situation that mirrors the infamous TJX breach in the US may already have happened in Europe,” he explained.
“But companies operating in this region are not legally obliged to notify their customers – which only erodes public confidence.”
“Many businesses make the mistake of believing data security to be just an IT issue, when it’s evidently more important than that – it’s a business issue that needs managing from the board level.”
Following the results, Secerno are appealing to UK firms to voluntarily disclose data breaches ahead of any new legislation.