The European Union's General Data Protection Regulation (GDPR) goes into effect May 2018, potentially imposing material fines and sanctions on non-compliant businesses that process, store, or otherwise handle information of any EU citizen, regardless of where the business is based. The regulation:
Requires companies to implement privacy controls around the collection, processing, and security of personally identifiable information (PII), commensurate with the level of risk.
Includes provisions for Rights of EU residents (inquiry, correction, deletion, etc.)
Requires 'appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures'
In an earlier blog I announced the publication of the Forrester leadership paper, Fact or Fiction: The State of GDPR Compliance. After reading this paper you may be interested in understanding how your organization "stacks up" to others. You can find out by completing the Forrester GDPR Benchmark Survey!
In just a few minutes you can complete this short survey and download a fully personalized analysis of the results. The survey evaluates:
- GDPR Program structure
- Organizational commitment to GDPR
- Compliance Strategy
- Key Focus Areas of GDPR
- Team engagement
- Confidence in policies, processes, and technology; and
- Prioritization of technologies supporting your GDPR compliance initiatives
Learn more about how RSA® Business-Driven Security™ solutions can support GDPR compliance.