According to IAPP-EY Annual Privacy Governance Report 2016, “For privacy and data protection professionals, 2017 may prove to be a watershed year. The leading change agent is the ramp up in preparations for the European Union’s new General Data Protection Regulation [GDPR], which enters into force in May 2018 to replace the EU Data Protection Directive…Together with the challenges brought by the invalidation of the Safe Harbor framework and entry into force of the new Privacy Shield, all eyes will be on Europe.”
A new set of European rules and standards related to privacy and data protection has set in motion a mad compliance scramble not for European companies, but for any company doing business in Europe or with European customers.
So what do you need to know to start thinking about the implications of these regulations especially if you are a company from outside Europe?
Here are 4 tips to get started.