Effective May 2018, the new EU General Data Protection Regulation (Also known as GDPR) will take effect. These guidelines will affect any organization that is either holding and /or processing the data of EU citizens. Regardless of where the data centers are located or where the data in stored. This includes U.S. companies.
GDPR is meant to protect the privacy of EU citizen data being processed over the internet. The GDPR mandates cover much more than just information security. GDPR is specific what you can and cannot do with the data. How you store and process it. As well as how long you can keep the data of EU citizens. And informing them of what exactly you are doing with their data.
Most importantly, under GDPR guidelines any data breach must be reported within 72 hours. There are very strict penalties for organizations that fail to meet GDPR obligations. Including up to 20 Million Euros, or 4% of an organizations total global revenue. Whichever amount is larger. As well as compensation to any affected EU citizens!
If you are concerned with better understanding the implications of GDPR as well as having a mitigation plan to meet the GDPR obligations- then Tabula Rosa is pleased to announce our latest GDPR services offerings partnership with Calligo.
|