The General Data Protection Regulation (GDPR) will impact every entity that holds or uses European personal data both inside and outside of Europe. GDPR is an opportunity to be embraced and a challenge to overcome to ensure compliance.
In order to be ready for the GDPR, entities will need to set their vision, agree their strategy and constitute their structures for achieving data protection and privacy operational change and compliance. These are not simply legal questions: getting ready for the GDPR requires multi-disciplinary skill sets.
Our team has the skills to provide solutions to the challenges ahead.
In the time available, organisations with significant personal data and complex processes will struggle to be fully compliant by May 2018. It’s therefore essential that your organisation has a clear vision and a risk-based approach to your GDPR implementation programme.
Under the GDPR, individuals will have the following new and enhanced rights to:
A failure to comply with the GDPR could result in fines of up to the higher of €20 million, or 4% of the organisation’s annual global turnover. However, the legal cost of dealing with data subject claims where organisations have got it wrong could exceed any fine imposed by the regulator.
We can help you to:
We recognise that one size does not fit all, and that every business has unique characteristics requiring a tailored approach to data protection. We can help you define a strategy for your privacy programme, and a tailored approach based on what matters most to your organisation and your appetite for risk.
We can help you prepare for the GDPR, from assessing your current state of compliance, through assisting you with your remediation programme, to establishing what “business as usual” will look like from May 2018.