Build the right GDPR programme for your business
Supporting your organisation at every stage of the compliance journey
What is GDPR?
The General Data Protection Regulation (GDPR) is a new privacy regulation across the European Union.
It provides individuals with more control over their personal data, ensures transparency about the use of data, and requires security and controls to protect data. When the GDPR takes effect, it will replace the data protection directive (officially Directive 95/46/EC) established back in 1995. The regulation was adopted on 27 April 2016 and it becomes enforceable from 25 May 2018.
The penalties for failing to comply with GDPR are severe:
annual global turnover
The GDPR contains requirements about how you collect, store and use personal information:
How to identify and secure the personal data in your systems
How to accommodate new transparency requirements
How to detect and report personal data breaches
How to train privacy personnel and employees
The aim of the GDPR is to protect all EU citizens from privacy and data breaches in an increasingly data-driven world, a world whose landscape has immensely changed and evolved from the time in which the initial directive was established.
of Organizations Will Struggle to Meet EU GDPR Regulations by Deadline*
* The finding is from VansonBourne independent survey
Who should be concerned about GDPR?
GDPR applies to any organization (including those outside the EU) that holds or processes data from EU residents and it replaces the Data Protection Directive (DPD) 95/46/EC to become the single, all-encompassing privacy protection regulation in the EU.
It also states the responsibility for privacy protection that lies with any companies who store, collect, manage and analyze any form of Personally Identifiable Information (PII).
GDPR will take effect on May 25th, 2018.
Don’t let time run out!
Don’t wait until it’s too late
Given how much is involved, you should not wait until the regulation takes effect in May 2018 to prepare. You need to begin reviewing your privacy and data management practices now. Failure to comply with the GDPR could prove costly, as companies that do not meet the requirements and obligations could face substantial fines and reputational harm.