The objective of the General Data Protection Regulation (GDPR) was to bring together all current data privacy laws in Europe – this was a decision that was made by EU law-makers. The main aim of GDPR is to protect the personal data of all EU citizens’ and alter the way in which organisations handle and manage data and its privacy. All organisations are required to become compliant by May 25, 2018. If they fail to comply by this date, they will run the risk of receiving a heavy fine.
Businesses will be expected to deal with a new way of approaching data privacy when GDPR is enforced on 25th May 2018. GDPR will be replacing the Data Protection Directive 95/46/EC and its aim is to ensure that citizens can control the way in which their data is handled and how organisations use it.
The implementation of GDPR into the workplace and the way in which it is practiced will result in an increase in workloads for Legal, Security and IT teams. However, a large portion of the responsibility of ensuring that organisations remain compliant will lay at the feet of other departments and those individuals who are located in these departments.