Within the framework of World Internet Day Segura, Isaca has launched a warning on the growing cyber -cyber threats that companies face due to inappropriate practices in privacy training. According to the “State of Privacy 2025” report by ISACA, although 87% of organizations provide privacy training, only 68% updates these contents periodically, which leaves security gaps against emerging threats.

The study reveals that, although 74% of respondents confirm that their privacy strategies are aligned with organizational objectives, only 59% updates these formations annually, while 9% do it every two to five years. This means that approximately 32% of employees are not receiving the necessary training to combat cyberamezas in the workplace.

And, cybersecurity and privacy are no longer only technical issues, but also strategic challenges that involve protecting digital trust. Isaca data stress that periodic training is crucial to mitigate risks and strengthen data protection. Several studies indicate that organizations that apply good practices in this area tend to experience less cybernetic incidents and to gain greater confidence on the part of their clients and partners.

Privacy on World Safe Internet Day

World Safe Internet Day is an opportunity to reflect on the importance of integrating privacy in all business areas. Emerging technologies such as artificial intelligence (AI) and the Internet of Things (IoT) expand the attack surface, making it essential that both employees and business leaders are prepared to act before possible incidents.

Safe Internet at work: A third of companies do not update privacy training for their employees

One of the main concerns in organizations is the growing role of AI in privacy management. According to the “State of Privacy 2025” report, 11% of organizations already use AI for privacy -related tasks, such as risk assessments, identification of anomalies and regulatory compliance.

Although these tools improve operational efficiency, they also have risks if ethical and privacy principles are not applied by design. The lack of transparency in the functioning of the algorithms can generate problems of trust and possible normative infractions, especially with the entry into force of the IA regulations.

Training programs

For companies that wish to review their training programs, the best strategy is to adopt a continuous improvement approach. This implies not only updating the contents and obtaining certifications, but also implementing simulations and practical exercises that reinforce incident response skills. Periodic and updated training is essential to keep employees informed about the latest threats and best practices in cybersecurity.

Alex Chen
Alex Chen

Alex Chen serves as the chief editor of Asia Tech Journal, bringing over a decade of experience in technology journalism. Previously writing for several globally renowned publications, Alex is celebrated for his insightful analyses and in-depth reporting on tech trends across Asia. Passionate about innovation, Alex specializes in the dynamic technology ecosystem of China and its global impacts.