The EU General Data Protection Regulation (“GDPR”) represents the biggest shake up to European privacy laws in over two decades. The GDPR will strengthen individuals’ rights and introduce new obligations on data controllers and data processors. Its impact is global – all companies (including international outfits) doing business with individuals located in EU member states must comply with the law’s provisions. Absolute compliance is required from May 25, 2018.
With only a few months to go, the pressure is on. Companies must now allocate budget and resources to implement GDPR compliant governance processes and controls.