GDPR & Cyber Security
In May 2018, data protection law changed significantly with the introduction of the EU General Data Protection Regulation (GDPR), and the Data Protection Act 2018 in the UK. The rights of EU citizens to control their personal details have been enhanced and new unified obligations have been placed on those dealing with personal data.
However, even thought the deadline has passed, this is not the end of the data protection compliance journey for organisations and, with the potential for huge fines for non-compliance with data protection laws (up to 4% of annual worldwide turnover or €20m – whichever is the higher!), businesses must continue to proactively ensure that they fully comply with the rules.