How will the new EU data protection requirements (GDPR) affect your organisation?
The EU General Data Protection Regulation (GDPR) is new legislation that provides a single, harmonised data privacy law for the European Union. With the increasing risk of data breaches from cyber-attack, the GDPR aims to prevent the loss of personal data by improving data security for all individuals living in EU member states.
We recommend that you conduct a General Data Protection Regulation workshop to gather a comprehensive introduction to the EU GDPR and a practical understanding of the implications and legal requirements for an EU organisation of any size. EU agencies have until May 2018 to comply with the new law, or potentially face fines of up to 4% of annual turnover or €20 million.
General Data Protection Regulation (GDPR).
The existing EU data protection regime is based on the 1995 Data Protection Directive (95/46/EC). During the last 20 years, there have been significant advances in information technology, and fundamental changes to the ways in which individuals and organisations communicate and share information. Combined with the new IT, data and Cyber developments, the various EU member states can not adopt a different approach to implementing the General Data Protection Directive in the future.
Get certified and recognised.
The GDPR directive can provide IT Governance and compliance difficulties for many businesses. In recognition of such challenges, the EU's legislative bodies have developed a more harmonised data protection law, the General Data Protection Regulation (GDPR). Although the GDPR is not likely to enforceable before 2018, it is advisable to start the journey now as implementation hazards are enormous. The certification course on 25th August 2016, we will provide guidance on the impact of the GDPR on businesses and what they should be doing right now to avoid major IT, data and reputational problems.
Cyber resilience, data protection, and cybersecurity.
Obligations to respond in the event of a data breach. The regulation requires organisations with 250 employees or more to have a Data Protection Officer, responsible for ensuring compliance. Also, companies are required to inform authorities of a data breach within 72 hours and to inform users of data breaches without any delay;
Focus on getting your customised definitions and understanding on:
- The key essential EU GDPR background and terminology.
- Data subjects and their rights.
- Dealing with subject access requests.
- The implementation path to EU GDPR compliance:
- Privacy by Design
- Privacy impact assessments (PIA)
- Data audits
- Training and competence requirements
- Incident response and breach reporting
- Updating policies and procedures
- International data transfers.
- Replacing Safe Harbour – the new requirements.
Learn from the experts how the EU General Data Protection Regulation (EU GDPR) will affect your organisation. Understand the implementation path to ensure EU GDPR compliance. Avoid heavy fines and loss of reputation resulting from data breaches.
For more information; http://copenhagencompliance.com/gdpr/register.html