> But I think there is a different attitude to data risk in that age group today. They've grown up in a world where very little is really private, and every app and its dog has wanted their contact details and other information
Counterpoint from a UK/EU perspective.....
Anybody new being onboarded is given (company compulsory) GDPR training if their role involves any handling or processing of personal data whatsoever. Data security and privacy is being treated quite seriously here; though unfortunately not seriously enough IMO.
Counterpoint also from a UK perspective: unfortunately a lot of people give no more than lip service to that training, and there are a great many people who have been in that sort of role who have avoided taking part in it at all. It sometimes worries me how seriously some people don't take the matter, and how many see that sort of regulation as pointless “innovation” preventing inconvenience. Heck, I know one fool who gave “the overreach manifest in GDPR” as one of his reasons for voting for brexit.
My DayJob company, and most of the people working here, do have the right attitude, as do most of our clients (if only because of the potential punishments, both in terms of fines and a slapping from the court of public opinion, if something done wrong has signifiant repercussions), but I do worry about how many people and companies seem to not care at all.
To be fair, it is apparent the tide is turning and awareness of data privacy is growing; even if this is unfortunately due to the increasing damage data breaches are causing.
Counterpoint from a UK/EU perspective.....
Anybody new being onboarded is given (company compulsory) GDPR training if their role involves any handling or processing of personal data whatsoever. Data security and privacy is being treated quite seriously here; though unfortunately not seriously enough IMO.