The General Data Protection Regulation (GDPR) (EU) 2016/679 marks a new era in data protection and privacy standards, and set new rules and regulations around the use, transfer and storage of EU personal data.
With extra-territorial scope organizations around the world are now responsible to an all new and demanding set of regulations, forcing fundamental and cultural changes with the way we view and manage data, and the penalties for non compliance are severe!
… up to, the GREATER of €20 million or 4% of global annual turnover.
OF DATA PROTECTION.
Article 5 of the GDPR sets out seven key principles which lie at the heart of the general data protection regime.
Ensure robust development & testing in line with best practices
Ensure computers and network devices are properly configured
Restrict execution of known malware and untrusted software
Maintain visibility and compliance controls over cloud assets
The GDPR 2.0 Readiness Program is an automated step-by-step framework for organisations to get their head around, implement and demonstrate compliance with these new requirements.
Map the personal data flows in your organisation.
Define and document how you use personal data.
A documentation & overview of procedures by which personal data are processed.
Demonstrate transparency, choice and controls over data permissions.
Understand the difference to implement the right controls and agreements.
Be aware of and comply with with the 8 fundamental rights.