Share on facebook
Share on twitter
Share on linkedin
Share on email

May 25 is Deadline to Comply with the EU’s General Data Protection Regulation

law

Along with losing weight and exercising more, your 2018 New Year’s resolutions should include this: Get your company compliant with the General Data Protection Regulation by May 25.

Or else?

Or else your company could face €10 million to €20 million in fines – not to mention risk a public relations nightmare.

BACKGROUND

folder

The European Union Parliament adopted the GDPR in April, 2016 to protect personal data of EU citizens and regulate how such data may be used. This regulation not only applies to organizations — data controllers and data processors — located within the EU. It also applies to those outside the EU if they offer goods or services to, or monitor the behavior of, EU data subjects. (This means you!) The exception is organizations in the United Kingdom, which is expected to have its own, similar regulation post-Brexit.

Parliament said in a news announcement at the time that the GDPR aims “to give citizens back control of their personal data and create a high, uniform level of data protection across the EU fit for the digital era.”

Provisions include things like a user’s “clear and affirmative consent” to the processing of private data, a user’s right to transfer data to another service provider, and to know when their data has been hacked, access to privacy policies that are explained in clear and understandable language, and stronger enforcement and high fines as a deterrent to breaking the rules.

RELEVANT DEFINITIONS

book

Personal data is any information related to a natural person or data subject that can be used to directly or indirectly identify the person. It can be anything from a name, a photo, an email address, bank details, posts on social networking websites, medical information, or a computer IP address.

A data controller is the entity that determines the purposes, conditions, and means of the processing of personal data. A data processor is an entity which processes personal data on behalf of the controller.

WHAT YOU SHOULD DO

checklist

Experts agree GDPR awareness is crucial from top to bottom of an affected organization. You need to educate personnel and establish protocols. Do you have an emergency handbook for coping with data breaches? This is the time to consider one. In some circumstances, you may need to appoint a Chief Data Protection Officer.

Other recommended steps are review and documentation of your data security procedures. Have you done a security audit or penetration test lately?

Note, too, the GDPR requires servers which hold or process any personal data are within compliant facilities.

If all this seems overwhelming, don’t worry. Consultants are available to help.  Some experts even point out any expense you may incur adding help for GDPR compliance will likely be far below what you’d pay in penalties for non-compliance.

ABOUT THOSE FINES

Cost of Acquisition

Fines are case specific, and reportedly will be given mostly when violations result in any real damage. Violators should be ready to shell out up to €10 million to €20 million, based on different sections of the regulation, like having the correct consent registered of the user, correct authoritative certifications to process sensitive data (like correct PCI-DSS level to process credit card information), and so on; or violating rights and freedoms of data — things like cross-border data transfers, handling and securing personal data, transparency on why/how you handle data.

 


For more information about this topic or ways to more effectively leverage your data, contact your InfoTrust Consultant today.

Share on facebook
Facebook
Share on twitter
Twitter
Share on linkedin
LinkedIn
Share on email
Email

Other Articles You Will Enjoy

InfoTrust Becomes Official Google Cloud Partner

InfoTrust Becomes Official Google Cloud Partner

For years, the experienced cloud engineering team at InfoTrust has helped major multi-brand clients across the globe drive their business objectives forward. With a…

Deloitte Recognizes InfoTrust in Annual Technology Fast 500 Ranking

Deloitte Recognizes InfoTrust in Annual Technology Fast 500 Ranking

Last week, Deloitte honored the experienced digital analytics consulting, data governance, and technology team at InfoTrust among the 500 fast-growing North American companies in…

The Most Useful Google Analytics Reports and Dashboards for Black Friday

The Most Useful Google Analytics Reports and Dashboards for Black Friday

With the holiday season rapidly approaching, Black Friday weekend is just around the corner. Recently, we asked if your digital analytics team is ready…

Migrating Tag Inspector from Python 2 to Python 3

Migrating Tag Inspector from Python 2 to Python 3

Recently, our engineering team completed a migration of our proprietary tag auditing and management platform from Python 2 to Python 3. This upgrade brings…

Get to Know All the Products in the Google Marketing Platform

Get to Know All the Products in the Google Marketing Platform

While most organizations are aware of the Google marketing stack, many only utilize one or two of its products. While using a single Google…

In-Housing in Your Organization’s Future? Start with This Conversation

In-Housing in Your Organization’s Future? Start with This Conversation

It’s time to have a real conversation about your company’s internal structure and capabilities. Are you being asked by management to make in-housing a…

Tag Inspector’s Cookie Detection Feature Receives Quanties Award for Best New Technology

Tag Inspector’s Cookie Detection Feature Receives Quanties Award for Best New Technology

At the Digital Analytics Association’s OneConference event last evening in Chicago, Tag Inspector’s new cookie detection feature received the Quanties Award for Best New…

Lead Analytics Consultant Mai AlOwaish Honored with DAA President’s Award

Lead Analytics Consultant Mai AlOwaish Honored with DAA President’s Award

At InfoTrust, our team works not only to grow our business and community, but also to further the digital analytics industry as a whole….

Join InfoTrust on the Journey Towards Organizational Maturity in Supporting Equality in Tech

Join InfoTrust on the Journey Towards Organizational Maturity in Supporting Equality in Tech

One of the pivotal moments of my career as an entrepreneur was hearing Jeff Hoffman share his legacy as a founder of Priceline.com, uBid.com,…

Our website uses cookies and may collect user information to provide a good experience. Read our Privacy Policy here.

Leave Us A Review

Leave a review and let us know how we’re doing. Only actual clients, please.