In Russia, the demand for solutions for data protection is growing

After the adoption of the law on toughening the punishment for data leaks and the introduction of working fines, demand from business to solutions to protect information increased by 40%. According to the forecasts of market participants, the investment of companies in cybersecurity in general this year can amount to 47 billion rubles, while by the time the law enters into force (end of May), business may not have time to implement new decisions, so the demand will be preserved on the horizon of the next two years.

Russian companies additionally invest in cybersecurity solutions up to 47 billion rubles. In 2025 and up to 58 billion rubles. in 2026. Such an assessment is given in the IB-company « Stakhanovets ». They explain the growth of expenses, including the development of regulation of work with data. From the moment of signing the bills on toughening the punishment for leakage of data, demand for the company’s DLP system (Data Loss Prevention, software to protect companies from leaks) has increased by 35–40%.

According to B1, the volume of the market for data protection is now 10% of all cybersecurity products, 21 billion rubles, and will show an increase of up to 17% by 2027. In particular, this will contribute to the entry into force of legislation on working fines that stimulate investments in data protection technology, confirms the head of the Solar Dozor product of the Solar Group of Companies Dmitry Meshavkin. Not a single company in Russia is safe from the leaks of information and the actions of insiders. For example, in 38% of cases, dismissed employees are trying to download customer or partners databases. Messengers (35% of all incidents) and corporate e-mail (23%) are still the main channels of leaks, he lists. In 15% of cases, the information leak occurs through the publication of data on the Internet, cloud storages and on file hosting.

In many Russian organizations, information protection systems are still not used, the SEO of the Stakhanovets company Dmitry Isaev recalls. These observations are confirmed by the statistics of the FSTEK of Russia, according to which at the end of last year only 10% of organizations were provided with a basic level of security, he says. Therefore, by the time the bill entered into force, most companies will not have time to implement data protection solutions, which is why the high demand for DLP will remain at least in the next two years.

Since the beginning of the year, the demand for consulting and legal services on the audit regarding the turnover and protection of personal data has also been growing. Its implementation is necessary in order to identify risks in advance and minimize them before holding to justice, specialized lawyers explain (see “Kommersant” of March 21).

The DLP systems market steadily grows by 10-15% per year, says Nikolai Zsovobnov, Executive Director of Infowatch Group of Companies. According to him, a large share of these attacks is realized using insiders within enterprises – when the internal and external attackers act jointly. Monitoring and prevention of such incidents is one of the tasks of DLP systems. The market features also play the role: the share of imported solutions of the DLP class in Russia has always been minimal, domestic solutions have been developing for more than 20 years. Customers of DLP systems and other solutions for data protection are mature companies that have formed an understanding of the value of the IB and understanding potential risks of leaks. Most often, in size, this is the upper boundary of medium -sized businesses, large companies and their subsidiaries.

The key risk of leaks for state organizations and corporations remain reputational damage and a decrease in competitiveness, Dmitry Meshkin notes. At the same time, for medium and small businesses, a fine of several million or tens of million rubles, as well as a hacker attack on IT infrastructure, can lead to a stop or termination of activities, he warns.

Tatyana Isakova