(HAKINMHAN/Shutterstock)
Privateness and compliance considerations are hurting organizations’ capability to supply well timed entry to knowledge for his or her inner customers, placing initiatives in danger. That’s the topline conclusion from Immuta and its 2025 State of Information Safety report, which it launched in the present day. Nevertheless, there are some shiny spots within the report.
Immuta surveyed about 700 knowledge leaders to get a way about what’s holding them up at night time. Almost two-thirds (64%) mentioned they face “important challenges” getting well timed and safe knowledge into the arms of customers, up barely from the 56% within the earlier 12 months’s report.
The highest barrier going through knowledge leaders in 2025, in accordance with Immuta’s seventh annual knowledge safety report, are compliance and privateness, which have been cited by 50% of the survey respondents. The presence of knowledge silos and knowledge fragmentation was cited as a prime barrier by 45% of respondents, whereas 39% reported a necessity to handle complicated and unscalable knowledge entry insurance policies and processes.
A scarcity of centralized knowledge entry administration system was cited as a prime barrier by 36% of survey respondents, whereas 34% mentioned they don’t have the sources to deal with knowledge entry requests. One other 34% cited a scarcity of agility with their legacy instruments and processes, in accordance with the Immuta report, which you’ll see right here.
In the case of centralized vs. federated method to knowledge governance controls, there was a reasonably even cut up, with 44% respondents reporting a centralized method, 36% a federated method, and 20% itemizing “different.” Corporations which have adopted the info mesh mannequin could also be liberating their customers to manage their very own knowledge, however on the worth of decentralized management, Immuta warns.
(Supply: Immuta 2025 State of Information Safety Report)
“A whole lot of organizations have the purpose to get to the federated mannequin,” Immuta Discipline CTO Bart Koek says within the report. “It strikes a steadiness and permits the departments to settle their particular guidelines as a result of they know the right way to management their knowledge finest whereas nonetheless complying with the worldwide regulation.”
The excellent news is that knowledge entry occasions have truly gone down for the reason that 2024 report. About one-third (37%) of respondents say it takes them a minimum of one week to get entry to knowledge after they’ve requested it. That’s down from final 12 months, when 44% of survey respondents mentioned it took them seven days or extra to get knowledge. However we’re not out of the woods fully, contemplating that “a 3rd of knowledge leaders say that knowledge customers can’t simply discover, request, and entry knowledge with out IT assist,” Immuta says in its report.
The report makes it clear that knowledge entry represents each a chance and a problem–a chance to make use of knowledge to construct AI functions, and a problem to supply this knowledge entry with out violating safety and privateness necessities. Reconciling these two seemingly contradictory enterprise mandates is the supply of nice heartburn for knowledge leaders, whereas additionally offering a chance for firms like Immuta that construct automated knowledge governance instruments.
“Legacy programs for provisioning knowledge entry are damaged,” Matthew Carroll, the co-founder and CEO at Immuta, says in a press launch. “Guide processes can not scale to fulfill the necessity for safe, well timed entry to knowledge. The one solution to allow quicker decision-making–which may very well be the catalyst for a brand new life-saving drug discovery, stopping expensive fraud scams, and even saving lives on the battlefield–is by placing an emphasis on establishing confirmed finest practices for a way knowledge is provisioned as a core a part of IT and enterprise technique.”
(Supply: Immuta 2025 State of Information Safety Report)
Two out of 5 firms aren’t assembly the minimal knowledge entry requirements when it considerations folks, course of, and know-how, the corporate says. Forty-four % of survey respondents say too many individuals or groups are concerned in knowledge administration, whereas 42% say they don’t have the fitting processes in place, and 41% say they don’t have the fitting instruments. Because the variety of human and non-human customers are rising, so will their knowledge calls for. “Enterprises are struggling to maintain tempo,” Carroll says.
Automation in knowledge governance might help deal with a few of these considerations. Information marketplaces such because the one that Immuta launched final fall, mix the info catalog expertise for exploring knowledge together with the safety controls mandatory to stop dangerous issues from occurring when customers get entry to it, and have the potential to fulfill the seemingly contradictory objectives of offering knowledge entry and knowledge safety on the similar time.
“Larger visibility means knowledge customers aren’t fishing for entry–they know what’s permissible and what’s not,” Immuta’s Vice President of Analysis Joe Regensburger says within the report. “Information governors know the job necessities of the inner clients who’re asking for entry. A market helps scale as a result of it appears to be like throughout a corporation and gives insights on each worker’s needs and must get everybody on the identical web page.”
You possibly can entry the report right here
When the info access-security chain breaks down, there will be downstream penalties to the enterprise. That might come within the type of missed inner objectives (cited by 31% of survey-takers), misplaced income (30%), and misplaced collaboration alternatives (30%), Immuta says. Corporations might not be capable of launch a brand new product or providing, full a buyer request, or entice and retain expertise, the corporate says in its report.
Greater than half (53%) of respondents say that almost all knowledge governance processes are nonetheless accomplished manually, whereas 62% say knowledge governance processes sluggish customers down. What’s extra, 51% of respondents “really feel overwhelmed” by knowledge entry management insurance policies. Immuta attributes this sense to “a large swath of each inner and exterior laws” at play in firms. Seven out of 10 knowledge leaders are topic to 10 or extra laws, whereas a 3rd are topic to 25 or extra.
When the governance processes to adjust to these laws are guide, all the things slows down, Immuta factors out. But it surely doesn’t should be that approach, the corporate says.
“When you’ve got the fitting privateness controls in place, you possibly can truly give extra knowledge to extra customers as an alternative of getting to lock it down and maintain it inside sure domains or groups,” Koek says.
Associated Gadgets:
Why Immuta Is Shifting Into Information Marketplaces
Immuta Report Reveals Corporations Are Struggling to Preserve Up with Fast AI Development
Making the Leap From Information Governance to AI Governance