GDPR Compliancy Date Looming
The GDPR clock is winding down, are you one of the companies scrambling to understand what exactly it is and what you are required to do to be compliant? The General Data Protection Regulation (GDPR) is a mandate that applies to all companies that conduct business with EU residents, regardless of where they are located. The deadline to meet GDPR Compliance is May 25, 2018 and the fines for non-compliance is $20 million or 4% global revenue/turnover per infraction. This European privacy law sets a new global bar for privacy rights, security, and compliance.
GDPR is fundamentally about protecting and enabling the privacy rights of individuals. The GDPR establishes strict global privacy requirements governing how you manage and protect personal data while respecting individual choice, no matter where data is sent, processed, or stored. Here are key changes under GDPR:
- Personal privacy: gives individuals the right to access their personal data, correct any errors associated with it, erase their personal data, object to processing their personal data, and export their personal data.
- Controls and notifications: organizations will have to protect all personal data using appropriate security, notify authorities of any data breaches, obtain necessary consents for processing data, and keep records on detail data processing.
- Transparent policies: organizations are required to provide clear notice of data collection, outline processing purposes and use cases, and define data retention and deletion policies.
- IT and Training: organizations need to train privacy personnel, audit and update data policies, employ a Data Protection Officer when required, and create and manage compliant vendor contracts.
GDPR Compliance is all about strengthening data security. 2W Tech can help. 2W Tech’s Cybersecurity Compliance Program was designed to support businesses with their compliance obligations. Most organizations must abide by and maintain a standard for controls that safeguard the confidentiality and privacy of information stored and processed. We work hand in hand with you to learn more about your required compliances, help obtain proper agreements, and access relevant system architecture information. Give us a call today to get started. May 25th is just right around the corner.
7 Steps to a Holistic Security Strategy
Interested in reading this article? Click the button below to download this asset.