McAfee CEO Christopher Young says companies are “cautiously optimistic” about their ability to handle the European Union’s General Data Protection Regulation despite concerns about the law’s scope.
Young told CyberScoop he sees organizations working diligently to comply with the law, but there is only so much they can do ahead of the mandated compliance deadline.
“I would tell you that a lot of organizations are still trying to figure it out and are a little bit of wait-and-see mode to understand exactly how some of the aspects of GDPR take hold,” Young said on the sidelines of the Security Through Innovation Summit presented by McAfee and produced by CyberScoop and FedScoop.
The law, which goes into affect Friday, mandates much stricter controls on how data can be collected, analyzed and used. The EU considers the law a huge push toward strengthening citizen’s rights when it comes to data.
Young’s optimism is a rosier outlook than most. Numerous studies, polls and news reports have painted a picture of companies scrambling to comply with the law or run the risk of massive fines in the event of a violation.
Young believes the EU could stem a lot of the worry if they presented clarity how they will interpret the law moving forward.
“I view that the way to get clarity in these situations is paint use cases, give examples,” he said. “I think we are going to need more examples, more use cases, for people to understand. I think that the more those examples can be used, it creates a clearer picture for everyone.”
Some of the few examples out there do not paint a welcoming picture. Last month, the The Internet Corporation for Assigned Names and Numbers learned it would have to shut down its database of information tied to website ownership. The White House appealed to the EU on behalf of security researchers that use the database to scrape data. The EU deemed that practice to be illegal under GDPR.