After years of negotiations, the European Union General Data Protection Regulation (EU GDPR) will come into effect on 25 May 2018, replacing the 22-year-old EU Data Protection Directive.
At its core, the GDPR aims to put EU residents in control of their personal data. It regulates how their data is collected, processed, stored, deleted, transferred, and used. Any company (local and international) that does business in Europe or handles the personal data of EU residents must comply with the new rules.
Developing a plan to comply with the new rules it is critical for all organisations. Failure to do so could lead to unprecedented fines of up to 4% of annual global revenue or €20,000,000, whichever is higher. This amount is significantly higher than any penalties data protection authorities (DPAs), within individual EU countries, have the power to issue today.
But what does successful compliance look like? What changes will organisations have to make to internal processes and what technologies should your company leverage to ensure that the personal data of EU residents are protected? How can IT and security professionals embed ‘privacy by design’ to their development lifecycles?
This GDPR playbook will guide you through how to:
- Discover the current state of personal data processing within your organisation
- Plan to drive the business towards full GDPR compliance
- Protect all identified personal data
- Enhance your compliance program through ongoing privacy assessments
Views: 0
