The General Data Protection Regulation (GDPR) has been active and enforceable since May of 2018, and requires organizations to undertake significant operational reform to meet the increased obligations of handling personal data.
The benchmark for other data privacy legislation globally, the legislation requires the implementation of appropriate technical and organizational measures to ensure and demonstrate that processing is performed in accordance with the Regulation, and reviewed and updated where necessary, and also requires processors of personal information to take responsibility for keeping records of their processing activities.
Penalties of up to 4% of a company’s global turnover available, can be levied upon an organisation for data breaches and non-compliance issues, creating unwarranted reputational damage as a consequence.
For updates on changes in legislation Sign Up for Vox updates on GDPR
Follow the Legislative updates by clicking on the link to the EU GDPR updates website