Overview
The General Data Protection Regulation (GDPR) is considered one of the most stringent privacy and security laws in the world. The regulation came into effect on May 25, 2018. It was drafted by the European Union (EU).
The GDPR applies to any organization even if they are not present in the EU if they process personal data of EU citizens or residents or offer products and services in the region.
Fines for violating the GDPR are very high. With two tiers of penalties, which max out at €20 million or 4% of global revenue (whichever is higher), and an option for data subjects to seek compensation for damages.
In today’s data-centric world that is marred by constant data breaches and personalization of the web, individuals have been left wondering how their data is used and misused. GDPR can be best thought of as a legal framework to enforce effective, and practical data protection for personal data.
Featured Resource
Whitepaper: Understanding GDPR beyond buzzwords and 4 practical steps to meet compliance.
Read the whitepaper
With more countries introducing modern privacy laws in the same vein as the General Data Protection Regulation (GDPR), the world has reached a threshold where the European baseline for handling personal information is now the de facto global standard.Nader Henein
Research Vice President,
Gartner
Gartner Press Release, September 2020.
Research Vice President,
Gartner
Gartner Press Release, September 2020.
3910 Freedom Circle, Suite 104,