- Benchmarking analysis is based on anonymized, aggregated metadata from tens of thousands of privacy incidents risk assessed through the Radar platform
- Unintentional incidents caused by human error account for 94% of total incidents in 2020
- Electronic-based incidents have increased 12% since 2018
- Paper-based incidents have decreased 13% since 2018, but still account for 30% of incidents
- 2020 saw a 5% increase in on-time notifications since 2019, which was 12% higher than 2018
- The median timeline from the occurrence of an incident to its discovery has more than doubled since 2018
Read more below.
PORTLAND, OR – March 9, 2021 – The Privacy Incident Benchmark Report 2021 reveals that human error accounted for the majority of privacy incidents in 2020, while less than 2% of incidents were found to be malicious in nature. These and other insights found in the RadarFirst second annual report provide the Privacy, Security, and Compliance communities with industry-specific privacy incident benchmarking data that fuels operational excellence across the entire incident response lifecycle.
According to a recent study, more than 90% of organizations are now reporting privacy metrics to leadership, with data breach and incident response among the most frequently cited. Tracking and reporting incident response metrics against privacy benchmarks provides company Boards and the C-suite with clarity in the face of increasing challenges to comply with evolving global breach notification regulations, helps them mitigate risks to personal information, and supports demands for organizational accountability, collaboration, and efficiency. It also provides incident response teams with insights that inform program improvements and drive the adoption of best practices.
“Benchmarking incident response outcomes, particularly in the context of your own industry, is critical to identifying indicators for operational improvements, making data-driven investment decisions, and providing leadership with clarity around how the organization is mitigating risk,” said Mahmood Sher-Jan, CEO of RadarFirst. “With the Radar intelligent incident response platform, our customers can capture and compare their real-time privacy incident response metrics to benchmark data relative to their industry. This second annual report provides the wider community and cross-functional incident response teams with unique and actionable insights based on metadata from real-world privacy incidents risk assessed and managed through the Radar platform.”
With Radar, organizations make consistent and accurate breach notification decisions in half the time. The intelligent incident response platform maps U.S. and international breach regulations, as well as third party notification obligations, to an automated risk assessment, delivering clear and defensible notification recommendations. Radar unifies incident response across an organization with a central reporting portal that enables privacy, security and other functional teams to work in parallel to resolve all types of incidents. Privacy benchmarking data, exclusive to Radar, allows organizations to compare metrics to their industry peers. Radar integrates with established platforms, including ServiceNow, to connect privacy, security, and IT. Learn more at radarfirst.com.
For further information, please contact:
Senior Director of Marketing