Sakari Aalto discusses findings from a survey conducted by Finland’s Office of the Data Protection Ombudsman. The survey, carried out at the end of 2012, surveyed 74 companies and organizations that had experienced data security breaches during October – December 2011. Aalto writes, in part:
In an alarmingly large proportion of companies (30%), the security breaches or threat of breaches had not led to any action at all. Some of the companies and service providers were also unable to identify their own role in the processing of personal data in relation to outsourced services. Several online stores that had outsourced their technical implementation did not perceive themselves as liable for the handling of personal information.
Read more on Mondaq