The General Data Protection Regulation (GDPR) is designed to unify data protection and privacy rules for people who live in the European Union. Because the GDPR rules are about data, it's important for organizations to know what they need to do before the rules go into effect in 2018.
Some organizations may conclude that because the rules are designed to protect those who live in Europe, they may not need to worry about compliance. However, experts advise all companies who deal with data to pay attention to this new regulation that goes into effect in next year because it impacts anyone who does business with consumers in the EU, and the fines for non-compliance are very expensive. For instance, fines can be as much as 4% of a company's revenue.
Some experts even recommend that if you deal with consumers at all, you should conform to the regulations of the jurisdiction with the strictest regulation. If you follow that practice you are best able to ensure that you are protected from the kind of steep fines imposed by rules like GDPR.
To better understand the scope of challenges and opportunities on the road to GDPR compliance, SAS (the sponsor of this site) is conducting a 10-minute survey. Based on this report, SAS says you will be able to identify your organization's position in relation to other organizations.
Once you complete the survey you will receive the report with results on how your peers are preparing for GDPR, the SAS Guide on how to identify, govern, and protect personal data to reduce risk, improve compliance and avoid fines, and more information on SAS's five-step approach to support organizations' efforts to handling data in a way that complies with GDPR.
The first 200 respondents will also receive a copy of Jill Dyche's most recent book, The New IT.
You can access the survey here.
What do you think? Is GDPR on your radar? Is your organization taking steps to comply? Let us know in the comments.