10 Steps Enterprises Need to Take to Comply with GDPR - InformationWeek
CIO Insights & Innovation
Security & Risk Strategy
Team Building & Staffing
IT Strategy
Digital Business
Project Management
Programming Languages
Dr. Dobb's
Enterprise Applications
Operating Systems
Productivity/Collaboration Apps
Network Security
Careers & People
Threat Intelligence
IoT
Attacks & Breaches
Application Security
Cloud Security
Endpoint Security
Mobile Security
Perimeter Security
Risk Management
Operations Security
Analytics
Vulnerabilities & Threats
Security & Risk Strategy
Infrastructure as a Service
Platform as a Service
Software as a Service
Cloud Storage
Data Centers
Mobile Applications
Mobile Devices
Mobile Business
Enterprise Mobility Management
AI/Machine Learning
Big Data Analytics
Hardware/Architectures
Software Platforms
IoT
Networking
Storage
Wireless Infrastructure
Data Center
Unified Communications
Cloud Infrastructure
Applications
Careers
PCs and Servers
Net Security
Government
Healthcare
Wall Street & Technology
Bank Systems & Technology
Insurance & Technology
Industries
Government
Healthcare
Wall Street & Technology
Bank Systems & Technology
Insurance & Technology
IT Life
Mobile
Mobile Applications
Mobile Devices
Mobile Business
Enterprise Mobility Management
Software
Enterprise Applications
Operating Systems
Productivity/Collaboration Apps
IT Leadership
News
10/11/2017
10:00 AM
Cynthia Harvey
Cynthia Harvey
Slideshows
0 comments
Comment Now
50%
50%
RELATED EVENTS
4 Key Steps in Implementing the Data Warehouse of the Future
Oct 26, 2017
Today organizations need performance and flexibility at an affordable price. A Hadoop-based enviro ...Read More>>
RELATED CONTENT

10 Steps Enterprises Need to Take to Comply with GDPR

If your organization doesn't have adequate data protection measures in place, including assigning a data protection officer, you could face steep fines next May.
Previous
1 of 11
Next

Many IT leaders are worried about the General Data Protection Regulation (GDPR) law.

The European Union (EU) calls GDPR the "most important change in data privacy regulation in 20 years." Passed in April 2016, the EU law will become enforceable on May 25, 2018, which means companies are quickly running out of time to prepare.

In Ovum research commissioned by SaaS provider Intralinks, 52% of the IT decision-makers surveyed said they believe GDPR will result in business fines for their companies. In addition, 63% of respondents said the law would make it harder for US businesses to compete and 67% said the law will force them to make changes to their EU business strategy.

A separate 2017 study conducted by PwC found that 54% of executives at large enterprises said GDPR compliance is their top data privacy and security priority, and 38% more said that while GDPR wasn't their number one agenda item, it was one of the most important. Only 7% said complying with GDPR mandates wasn't a top concern.

Image: Pixabay
Image: Pixabay

The GDPR standardizes data privacy protections throughout Europe. It also imposes stricter regulations on all businesses that collect or process the personal data of EU residents. The full text of the law runs 260 pages long, but some of its key provisions include the following:

New rules for obtaining consent and allowing people to withdraw consent for data collection

  • Data breach notification within 72 hours of awareness
  • The right for consumers to have their data erased
  • The right for consumers to see any data companies have about them
  • The right for consumers to move their data from one provider to another
  • The requirement for companies to appoint a Data Protection Officer
  • The requirement for companies to build privacy into their systems and limit employee access to personal data

Although GDPR is an EU regulation, it applies to organizations all around the world. And those companies that aren't in compliance by May 25, 2017, will face penalties of up to $20 million euros or "4% of the total worldwide annual turnover of the preceding financial year, whichever is higher."

What should companies be doing to get ready for GDPR? Experts recommend several steps that are covered in the following slides.

 

Cynthia Harvey is a freelance writer and editor based in the Detroit area. She has been covering the technology industry for more than fifteen years. View Full Bio

Previous
1 of 11
Next
Comment  | 
Print  | 
More Insights
Webcasts
More Webcasts
White Papers
More White Papers
Reports
More Reports
Comments
Newest First  |  Oldest First  |  Threaded View
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Download Now!
Register for InformationWeek Newsletters
White Papers
Current Issue
Digital Transformation Myths & Truths
Transformation is on every IT organization's to-do list, but effectively transforming IT means a major shift in technology as well as business models and culture. In this IT Trend Report, we examine some of the misconceptions of digital transformation and look at steps you can take to succeed technically and culturally.
Download This Issue!
Video
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll