Europe’s measurements to protect personal data
From May 2018, all organizations that collect, store or process data of EU citizens must comply with the GDPR (General Data Protection Regulation). Do you know GDPR? Recent research of Smart Business and ZDN.net, shows that 65.5 percent of those questioned had never heard of GDPR and 29.3 percent only know the big picture. These are quite shocking figures given that the deadline of this GDPR compliance is very near.
The GDPR aims to protect the EU citizens when it comes to their personal integrity, even when they are staying in China. Today, we live in a digital age where data is extremely valuable and has become an integral part of everyday business. However, there are many vulnerabilities associated with this great collection of personal details. Old data protection legislations are no longer sufficient to protect the consumer’s/patient’s rights.
The requirements of GDPR
The GDPR applies to the complete processing of personal data stored on premise or in the cloud, from collection to deletion. It requires organizations to deploy enhanced protection against security intrusions. If a breach occurs for example, the supervisory authority must be informed within 72 hours through a formal procedure. That is no easy task given the fact that it normally takes about 205 days before hacks are discovered. Moreover, only 31 percent of organizations discover data breaches themselves…
Furthermore, the GDPR requires companies to brief the subjects of such data breaches without undue delay so they can take the necessary precautions. The number of data subjects; the categories and the number of personal data records concerned; the contact details of the Data Protection Officer and the description of the consequences of the data breach, are examples of articles of the GDPR. This legislation also applies to organizations that are based outside of the European Union when they offer services to EU citizens.