The European Union’s General Data Protection Regulation (‘GDPR’) poses the biggest change to the regulatory landscape of data privacy. Coming into effect in May 2018, GDPR aims to unify data protection all across the EU and establish data privacy and protection as a fundamental right.
GDPR places significant policy and technical responsibilities on ANY organization that handles EU citizens’ personal data, regardless of whether or not it physically operates in the EU.
Therefore, although GDPR originates in Europe, it has a vast worldwide impact and it will directly affect the way international businesses operate in Europe.
A lot has been discussed about GDPR and its novelty has contributed to numerous speculations and interpretations.
Check Point has concluded about recommended focus areas to begin your GPDR preparation process. Those include: Staffing, Data Audit and Classification, Risk Analysis, Logging of Activity and Breach Identification, and Fundamental Controls. Scroll down to read our white paper for more details and action items.
According to the regulation penalties for non-compliance may reach up to 4% of a company’s worldwide turnover or €20M.
Enforcement start day: 25 May, 2018
The GDPR guidelines are based on a risk-based approach to ensuring the privacy and security of an individual’s data. Specifically, GDPR proposes that relevant entities implement measures that are appropriate to the value or damage associated with the loss of personal information.