After years of negotiations, the European Union General Data Protection Regulation (EU GDPR)
will come into effect on 25 May 2018, replacing the 22-year-old EU Data Protection Directive.
At its core, the GDPR aims to put EU residents in control of their personal data.
It regulates how their data is collected, processed, stored, deleted, transferred, and used.
Any company (local and international) that does business in Europe or handles the personal data of EU residents must comply with the new rules
Developing a plan to comply with the new rules is critical for all organisations.
Failure to do so could lead to unprecedented fines of up to 4% of annual global revenue or €20,000,000
, whichever is higher.
This amount is significantly higher than any penalties data protection authorities (DPAs), within individual EU countries, have the power to issue today.
This GDPR playbook
will guide you through how to:Discover the current state of personal data processing within your organisation
Plan to drive the business towards full GDPR compliance
Protect all identified personal data
Enhance your compliance programme through ongoing privacy assessments