GDPR is very emphatically about managing privacy with the interests of the data subjects at heart. It is not about encouraging lazy people to sign away their rights.
The bottom line, I think, is that (regardless of GDPR and its jurisdiction) a mutable company can’t afford to have a breakdown of trust with its customers and other stakeholders – as Facebook is discovering. GDPR may simply be a catalyst for bringing data-related trust issues to the surface.
GDPR is overlay talked about, most of the discussion being around internalised processes and actions. An important part of reducing GDPR threats is to ratify your up and down stream supply chains, and to make sure that cloud contracts and partnerships are documented and in line with your own GDPR compliance.
May 2018 sees the enforcement of GDPR. How you ensure that you’re compliant is potentially messy depending on your role and intent. Data that you think is not subject to GDPR may in fact be so.
The financial world is currently in the throes of implementing two landmark regulations aimed at making the banking sector more customer-centric, secure, competitive and innovative. However, if you look beyond...
The GDPR (General Data Protection Regulation) requires that customers and other individuals for whom you hold private data, have the right of erasure. That is, they can demand that you...