As of May 25, 2018, the new Privacy Data law will be maintained in the EU. The so-called EU GDPR or General Data Protection Regulation was adopted in April 2016 by the European Parliament and will replace all national privacy data laws in the EU.
The main items of the GDPR applicable to organizations are:
- Demonstrate compliance with the principles of legitimacy, lawefullness, use of restrictions, accuracy of personal data, duration of necessary use, personal data protection.
- In addition, account must be taken of the security of information during transfers inside and outside the EU.
- The rights of natural persons become wider and need to be taken seriously.
- The fines are increased to make organizations more aware of the need to meet the GDPR.
Of the 99 EU GDPR law articles, there are at least 40 applicable to an organization. The list of documents and evidence to be demonstrated is significant.
With the date of May 25, 2018 closing by, it is therefore important to let an expert in this area translate the legal requirements into the practical control measures in your organization. InformationSecure.nl can help you with this.
Contact us for more information.