In December 2015, the European Parliament and European Commission reached an agreement on the new Privacy and Personal data protection regulation, called the “General Data Protection Regulation” (GDPR). All existing local Data Protection laws and regulations in the 28 member countries will be superseded by the GDPR which sees the introduction of several new changes and enforcements regarding the security of processed personal data. The impact of these changes will affect enterprises and public bodies both inside
and outside of Europe.
The GDPR will come into force in May 2018. Organisations have until then to review their processes and security strategies in order to comply with it. Failure to do so will expose them to significant sanctions in the event of a data security breach – fines of up to 20 Million Euros or 4% of global group revenue, whichever sum is the greatest.
The purpose of this White Paper is to inform businesses about the GDPR and what steps need to be taken to prepare for compliance. It will share the best practice and processes that organisations should consider implementing in response to this new reality.
