If so, whether it concerns customer, candidate or staff data , then the GDPR applies.Legal compliance obligations can be scary if you don’t know how to handle them. Do you have questions or concerns?
We guide you step by step through the procedure to design and build better security. Your organization will be GDPR compliant and meet legal obligations.
The General Data Protection Regulation (GDPR), which came into effect on May 25, 2018, is a regulation in EU law on data protection and privacy for all persons within the European Union.
The GDPR, which is broader and more detailed, replaces the Data Protection Act (DPA) of 1998.
This implies that companies need to reevaluate their privacy practices and adapt the way they request and manage consent.
Breaches can occur when organizations fail to properly protect the data they collect or process. Sanctions for GDPR breaches can be severe, ranging from fines of up to 20 million euros or 4% of an organization’s annual global turnover.
Do you have a company outside the EU that deals with personal and/or sensitive data of EU customers/suppliers or staff? All companies in ‘third countries’ (non-EEA countries) must become GDPR compliant before starting EU operations.
Most non-EEA companies operating in the EU will need to appoint an EU representative. An EU representative acts as your company’s main point of contact with the EU.