The General Data Protection Regulation (GDPR) will come into force on the 25th of May 2018, replacing the exisiting data protection framework under the EU Data Protection Directive. The GDPR will mean that organisations involved in data processing of any sort need to be aware the regulation addresses them directly in terms of the obligations it imposes. What does this mean for your company you ask? Well if you do not comply you can expect fining capabilities of up to €20,000,000 or 4% of your global turnover, whichever is greater.
The GDPR emphasises transparency, security and accountablility by data controllers, while at the same time standardising and strengthening the right of European citizens to data privacy.