https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Technology Solutions Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
  • MSP 501
    • Back
    • MSP 501 Rankings
    • NextGen 101 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Channel Futures 20: Top Tech Providers
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2023 Editorial Calendar
  • Awards
    • Back
    • 2022 MSP 501
    • Channel Influencers
    • Circle of Excellence
    • DE&I 101
    • Technology Advisor 101 (TA 101)
    • Channel Leaders Lists
  • Events
    • Back
    • 2023 Call for Speakers
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Technology Solutions Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
  • MSP 501
    • Back
    • MSP 501 Rankings
    • NextGen 101 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Channel Futures 20: Top Tech Providers
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2023 Editorial Calendar
  • Awards
    • Back
    • 2022 MSP 501
    • Channel Influencers
    • Circle of Excellence
    • DE&I 101
    • Technology Advisor 101 (TA 101)
    • Channel Leaders Lists
  • Events
    • Back
    • 2023 Call for Speakers
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Agents
  • Cloud Service Providers
  • Channel Partners Events
 Channel Futures

Data Centers


Cloud Storage

Most Small Businesses Not Following Cloud Storage Regulations

  • Written by Edward Gately
  • November 30, 2017
Despite the risks, 90 percent of small businesses surveyed are either “very” or “somewhat” confident in their cloud storage’s security.

A new survey shows more than three in five (60 percent) small businesses putting customer credit card and banking information in cloud storage are not following mandatory industry regulations.

The Clutch survey included 300 IT decision makers at U.S. small businesses currently using cloud storage. Two industry regulations – the Payment Card Industry Data Security Standard (PCI DSS) and the Health Insurance Portability and Accountability Act (HIPAA) – are required for businesses that store banking information or medical data. Businesses found to be non-compliant with these two regulations can be fined millions of dollars.

Clutch's Riley Panko

Clutch’s Riley Panko

Riley Panko, senior content developer and marketer at Clutch, tells Channel Partners that small businesses may not be aware of these industry regulations, or at least not aware of the severity of the consequences for non-compliance.

“Small businesses storing sensitive data absolutely must be made aware of regulations such as PCI DSS or HIPAA,” she said. “There is perhaps an opportunity for cloud storage providers to provide more knowledge of regulations — are these small businesses automatically complying by storing their data on the providers’ servers? Even if compliance is automatic, small businesses should be aware of the regulations and the necessary steps for compliance.”

Despite the risks, nine in 10 (90 percent) small businesses are either “very” or “somewhat” confident in their cloud storage’s security, a 3 percent increase from 2016.

“While more than half of these small businesses storing sensitive data say they don’t follow industry regulations, there is a positive trend — over half of all small businesses are using encryption (60 percent), two-factor authentication (53 percent) or employee training (58 percent) to protect their data in the cloud,” Panko said. “These additional security measures are often what is required to be compliant with regulations. While small businesses may not fully understand the industry regulations, the popularity of these additional security measures shows that they are at least taking some strongly positive steps towards securing their data in the cloud.”

Ghazanfar Ghori, chief technology officer of software and mobile app development agency 10Pearls, said some small businesses’ security measures aren’t used effectively. For example, a company password policy, requiring complex passwords with regular updates, can be compromised by negligent employees.

“People will write (the new password) down on a sticky note instead and stick it on their locker,” for everyone to see, he said.

Companies should strive for seamlessly integrated security plans to minimize employee error, Ghori said. Security measures such as two-factor authentication and encryption cannot be compromised easily by employee error.

“The strongest benefit of compliance is perhaps the assurance of a business’ integrity,” Panko said. “If your data is hacked and sensitive customer data is compromised, those customers are sure to be upset or enraged. This is especially true if the customers find that your small business wasn’t compliant with basic regulations; however, if you follow regulations to the letter and are still hacked, some of that blame can be shifted — the hackers were smarter than the regulations. Your business did all it could.”

Tags: Agents Cloud Data Centers Regulation & Compliance Security

Most Recent


  • Making Waves
    7 Channel People Making Waves This Week at TD Synnex, Veeam, Kaseya, Zendesk, More
    Microsoft has discovered malicious activity by a state-sponsored threat actor based in China.
  • Businessman reading cloud computing news
    Cloud Computing News: VMware, Celigo, Google Cloud, AWS Dominate the Week
    Find out what the vendors are up to this week and how partners are impacted.
  • OffSec Partners Get Expanded Global Partner Program
    The expanded partner program includes three new partner types.
  • zero day vulnerability
    Barracuda Networks Identifies Long-Exploited Zero-Day Vulnerability
    The earliest identified evidence of exploitation dates back to October 2022.

One comment

  1. Avatar Pat December 2, 2017 @ 5:16 am
    Reply

    It would interesting to know the stats after separating PCI DSS and HIPAA. Outside of our customers who are in the medical industry, the most relevant stats for our business would be the PCI DSS only stats.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Cloud computing concept
    Cloud Computing Adoption Isn’t Slowing — Need to Convince Clients?
  • hybrid clouds
    Nutanix, HPE Team on Hybrid, Multicloud via GreenLake
  • Cloud Certification
    CompTIA Updates Cloud+ Certification, Drops New AI Guide for Businesses
  • Cloud security
    VMware Debuts Cloud Web Security on SASE Platform

Upcoming Events

View all

Channel Partners Europe

June 13, 2023 - June 14, 2023

Channel Futures Leadership Summit

October 30, 2023 - November 2, 2023

Channel Partners Conference & Expo

March 11, 2024 - March 14, 2024

Galleries

View all

7 Channel People Making Waves This Week at TD Synnex, Veeam, Kaseya, Zendesk, More

June 2, 2023

Cloud Computing News: VMware, Celigo, Google Cloud, AWS Dominate the Week

June 2, 2023

Channel People on the Move: HPE, Lumen, Sophos, TD Synnex, AireSpring, More

June 1, 2023

Industry Perspectives

View all

Dell Technologies World: Dell Apex Expanded Across On-Premises, Cloud and Edge

May 22, 2023

Identity Is Increasingly Valuable – and Targeted

May 18, 2023

Gaining a Competitive Advantage through AV Managed Services

May 10, 2023

Webinars

View all

From Problem to Profit: Mastering the Science of Selling Using Business Outcomes

May 9, 2023

Meet the 2023 Channel Futures Channel Influencers

April 13, 2023

DE&I Dialogue: How the Right DE&I Initiatives Can Propel Your Business

April 5, 2023

White Papers

View all

6 UCaaS Reseller Challenges and How Real World Businesses Solved Them

February 1, 2023

Frost Radar: North American UCaaS Market, 2022

February 1, 2023

The Complete Guide to White-Label UCaaS for Reseller Success

February 1, 2023

Channel Futures TV

View all

Coffee with Craig and James Episode No. 123: MartinWolf M&A Advisors, CP Expo Preview

UScellular Takes On Rivals with Partner Program Simplicity

April 21, 2023

OpenText Simplifying Deal Registration, Doubling Down on MDF

April 21, 2023

Everything-as-a-Service: CloudBlue Touts Critical Customer Transition

April 18, 2023

Twitter

MSP 501

The industry's largest and most comprehensive partner awards program.

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Galleries

Educational slide shows and images from live events.

Media Kit And Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Events
  • Telecoms.com
  • MSP 501
  • Black Hat
  • IoT World Today
  • Omdia

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2023 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X