About 70% of organizations that store sensitive data abroad choose to do so in countries with lenient breach notification requirements!
Many companies that look to process and store sensitive data — including intellectual property — abroad as a cost-cutting measure are seeking countries with minimal data breach notification requirements, according to a survey of 1,000 senior IT decision makers by market research firm Vanson Bourne. The survey was sponsored by Intel’s McAfee and Science Applications International Corporation (SAIC).
The economic downturn has been driving companies to process and store more types of sensitive information abroad, according to the survey. Today, about 50% of organizations said they would do this as a cost-cutting measure. Meanwhile, about 33% of organizations said they want to store more sensitive information outside their home borders, which is an increase from 20% in 2008.
Interestingly, about 80% of organizations said that their choice of data storage locale is influenced in part by a country’s data breach laws. About 70% of organizations that do store information abroad select countries with more lenient notification rules.
Geographically speaking, which countries are the safest for storing data? “While attacks are hard to trace back to a specific country, China, Russia, Pakistan are perceived to be the least safe for data storage,” according to a related report from McAfee and SAIC. Those rankings remain unchanged from 2008, as do the countries perceived to be the safest places for storing data: the United Kingdom, Germany, and the United States.
from Information Week: http://www.informationweek.com/news/security/management/showArticle.jhtml?articleID=229400519&cid=RSSfeed_IWK_News