GDPR: Things you should know
To say that the newly agreed EU General Data Protection Regulation (GDPR) will change the existing data protection framework in Europe is an understatement.
After an intense legislative process of more than 4 years, the all-powerful trio comprising the European Parliament, the Council of the EU and the European Commission have created an ambitious, complex and strict law that is set to transform the way in which personal information is collected, shared and used globally.
Those who are used to the regime originally established by the 1995 Data Protection Directive (95|46|EC) may recognise some familiar concepts and principles, but despite the similarities, the effect of the GDPR will be far greater than that of the Directive. In other words, the GDPR aims to take data protection compliance to a new level.
Therefore, it is essential that we start to appreciate what is significant about the GDPR. The next two years will be critical to prepare for compliance with what promises to be a game-changing piece of legislation.