THALES
A new global study from Thales , with research from the Ponemon Institute, has exposed an increasing disparity between the rapid growth of data stored in the cloud and an organization’s approach to cloud security. Although nearly half (48%) of corporate data is stored in the cloud, only a third (32%) of organizations admit they employ a security-first approach to data storage in the cloud.
This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20191008005492/en/
Surveying over 3,000 IT and IT security practitioners in Australia, Brazil, France, Germany, India Japan, the United Kingdom and the United States, the research found that only one in three (31%) organizations believe that protecting data in the cloud is their own responsibility.
Increased multi-cloud cloud use, but with risks
With the proliferation of cloud-based services, businesses and other organizations are increasingly dependent on cloud providers. In fact, nearly half (48%) of organizations have a multi-cloud strategy, with Amazon Web Services (AWS), Microsoft Azure and IBM being the top three. The study found that, on average, organizations use three different cloud service providers and over a quarter (28%) are using four or more.
Despite storing sensitive data in the cloud, nearly half (46%) surveyed revealed that storing consumer data in the cloud makes them more of a security risk. Over half (56%) also noted that it posed a compliance risk. In addition, organizations believe that cloud service providers bear the most responsibility for sensitive data in the cloud (35%), ahead of shared responsibility (33%) and themselves (31%). Even though businesses are pushing the responsibility to cloud providers, only 23% say security is a factor in selecting them.
“With businesses increasingly looking to use multiple cloud platforms and providers, it’s vital they understand what data is being stored and where,” said Larry Ponemon, chairman and founder of the Ponemon Institute. “Not knowing this information makes it essentially impossible to protect the most sensitive data --ultimately leaving these organizations at risk. We’d encourage all companies to take responsibility for understanding where their data sits to ensure it’s safe and secure.”
Encryption increasing, but organizations handing over keys to cloud providers
Roughly half (51%) of businesses and other organizations still do not use encryption or tokenization to protect sensitive data in the cloud. The study uncovered regional disparities in terms of data security, with German organizations being the most advanced in their use of encryption at 66%.
Organizations are handing over the keys to their encrypted data to cloud providers. Nearly half of cloud companies (44%) provide the encryption keys when data is encrypted in the cloud, ahead of in-house teams (36%) and third parties (19%). On top of this, 53% are controlling these encryption keys themselves, despite 78% saying it’s important their organization retains control of the keys.
Over half of businesses (54%) think cloud storage makes it more difficult to protect sensitive data, up from 49% last year. More than 70% believe that data in a cloud environment is harder to protect due to the complexity of managing privacy and data protection regulations, while an additional two-thirds (67%) cited the difficulty of applying conventional security methods in the cloud.
“This study shows that businesses today are taking advantage of the opportunities that new cloud options offer, but aren’t adequately addressing data security,” said Tina Stewart, vice president of market strategy for cloud protection and licensing activity at Thales . “Having pushed the responsibility towards cloud providers, it is surprising to see that security is not a primary factor during the selection process. It doesn’t matter what model or provider you choose, the security of your business’ data in the cloud has to be your responsibility. Your organization’s reputation is on the line when a data breach occurs, so it is critical to ensure in-house teams keep a close eye on your security posture and always retain control of encryption keys.”
For more information, attend our “Global Trends in Cloud Security: Gaps in Security Persist in a Multi-Cloud World” webinar taking place on November 7 or visit the 2019 Thales Cloud Security Study website .
Research methodology
This research was conducted by the Ponemon Institute on behalf of Thales with 3,667 IT and IT security practitioners surveyed across the Australia, Brazil, France, Germany, India, Japan, the United Kingdom and the United States.
Industry insight and views on the latest data security trends can be found on the Thales blog at blog.thalesesecurity.com .
Follow Thales on Twitter , LinkedIn , Facebook and YouTube .
About Thales
Thales (Euronext Paris: HO) is a global technology leader shaping the world of tomorrow today. The Group provides solutions, services and products to customers in the aeronautics, space, transport, digital identity and security, and defence markets. With 80,000 employees in 68 countries, Thales generated sales of €19 billion in 2018 (on a pro forma basis including Gemalto).
Thales is investing in particular in digital innovations — connectivity, Big Data, artificial intelligence and cybersecurity — technologies that support businesses, organisations and governments in their decisive moments
PLEASE VISIT
Thales Group
Security
Download HD photos
View source version on businesswire.com: https://www.businesswire.com/news/home/20191008005492/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
INNIO wins prestigious German Sustainability Award 20269.12.2025 09:07:00 CET | Press release
INNIO Group has been awarded the German Sustainability Award for Companies 2026. At the 18th annual ceremony in Düsseldorf, INNIO was named winner in the “Engines and Turbines” category within the “Machines and Installations” sector. Recognized as one of Europe’s most respected distinctions for corporate responsibility, the German Sustainability Award reflects the United Nations’ Agenda 2030 and thus on the key areas of transformation such as climate, biodiversity, resources, supply chain, and society. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251205520809/en/ INNIO wins prestigious German Sustainability Award 2026 (c) Frank Fendler “This award is a tremendous recognition for our entire team and validates our 360-degree approach to sustainable innovation throughout the value chain,” said Marcin Kawa, VP Sustainability at INNIO Group. “We are committed to actively shaping the energy transition and delivering solutions th
EURONICS and NIQ Forge Strategic Collaboration to Elevate Retail Pricing Intelligence9.12.2025 09:00:00 CET | Press release
NIQ (NYSE: NIQ), a leading consumer intelligence company combined with GfK in 2023, has been selected by EURONICS, a leading global shopping cooperative in the Technical Consumer Goods (TCG) sector, to provide comprehensive Online Price Monitoring. NIQ's Online Price Monitoring provides insights into pricing dynamics by tracking item-level pricing across a defined data set. The system captures product information, matches items accurately, and ensures quality through advanced automated processes combined with human oversight and detailed checks. NIQ offers a range of retail pricing solutions, including pricing intelligence tools and the Consumer Price Lab, empowering businesses to make informed decisions and optimize their pricing strategies. This collaboration focuses on providing EURONICS with comprehensive pricing insights to support informed decision-making. NIQ delivers accurate and transparent data to help EURONICS understand market dynamics and plan effectively. "Through our col
SonicEdge and Earfab Partner to Shape the Future of Personalized Audio and Hearing Wellness9.12.2025 09:00:00 CET | Press release
Partnership unites SonicEdge’s micro-speaker technology with Earfab’s custom-fit innovation to deliver unmatched comfort and fidelity SonicEdge, a pioneer in micro-acoustic innovation, today announced a strategic partnership with Earfab, the innovator of custom-fit hearing technology, to co-develop a new generation of personalized audio solutions that unite comfort, precision, and hearing safety. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251209472421/en/ Credit: SonicEdge By combining SonicEdge’s high-performance MEMS speaker-in-chip technology with Earfab’s custom-fit eartips – crafted using its proprietary earfabSCAN 3D smartphone scanning platform – the collaboration delivers a first-of-its-kind experience that redefines in-ear performance. The joint solution provides a perfect acoustic seal for enhanced sound fidelity, improved active noise cancellation, and long-term listening comfort – without compromising hearing
Outpost24 Acquires Infinipoint to Power Its Entry into the Zero Trust Workforce Access Market9.12.2025 08:00:00 CET | Press release
The strategic acquisition strengthens market leadership by unifying user identity with device trust, eliminating security blind spots. Outpost24, a leader in exposure management and identity security, today announced the acquisition of Infinipoint, a specialist in device identity, posture validation, and secure workforce access. The acquisition marks Outpost24’s entry into the Zero Trust Workforce Access market and enhances its identity security division, Specops, by laying the foundation for a unified approach that evaluates both the user and the device before access is granted. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251208750630/en/ Ido Erlichman, Chief Executive Officer of Outpost24. As organizations advance their Zero Trust strategies, authentication alone is no longer enough. MFA and SSO confirm who the user is, but they do not validate the security of the device being used. In hybrid environments where employee
VSO Submits VCP v1.0 to Nineteen Regulatory Authorities Across Thirteen Jurisdictions and Completes First Integrated Evaluation in a Production-Like Environment9.12.2025 08:00:00 CET | Press release
The VeritasChain Standards Organization (VSO) announced today that it has submitted the VeritasChain Protocol (VCP) v1.0 to nineteen regulatory authorities across thirteen jurisdictions, including the United States, United Kingdom, European Union, Singapore, Hong Kong, United Arab Emirates (DIFC), Australia, India, South Korea, Switzerland, Brazil, Liechtenstein, and Saudi Arabia. The submissions present VCP v1.0 as a cryptographic audit framework designed to address emerging supervisory requirements under the EU AI Act Article 12 for logging and traceability, and MiFID II / RTS 25 for timestamp integrity and event ordering in AI-driven and algorithmic trading systems. VSO also confirmed the first completed integration of VCP v1.0 within a controlled, production-like evaluation environment operating under its Early Access Program. The environment successfully generated cryptographically linked event chains, immutable hashing, and verifiable proofs using RFC-aligned structures, demonstr
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom