Designed to harmonise rules across the EU’s 28 member countries, this new regulation makes privacy and data protection integral to technological development and organisational processes. Described as the biggest shake-up to privacy regulation for 20 years, GDPR introduces new and wide-reaching legal obligations relating to how businesses collect, store and share personal information.
This incoming regulation poses several challenges for businesses. Aside from the 72-hour mandate to disclose a breach, the threat of huge fines, the appointment of a data protection officer and ensuring they and their supply chain uphold diligent data management standards, businesses may also have to revise processes around accessibility, retention and deletion of personal data so they are compliant under these stricter data protection rules.
Find out more by downloading our factsheet.