The EU General Data Protection Regulation (GDPR) heralds the most significant change to data protection law in the EU, and globally, in recent years. Every organization that processes EU residents’ personal information must adapt its data handling, information security, compliance processes, and contractual relationships.
Ignoring or getting it wrong could be costly: Infringement can result in fines of up to 4% of annual global revenue or €20 million (approximately US$23.5 million), and damage corporate reputation. The path to compliance starts here.
In this green paper, we give an overview of the key areas of change introduced by the Regulation and the critical areas organizations need to be aware of when becoming compliant.
- What the Regulation is
- The key changes introduced by the Regulation
- The scope and impact of the Regulation