AMO and TIP GDPR
- 1 expert lawyer in GDPR
- 1 cyber security expert
Rate for 1 day of advice
File on request, please consult us
THE General Data Protection Regulation (GDPR) is a new European directive to protect the personal data of EU citizens.
Who’s involved? All organisations that hold personal data on EU citizens are affected. Organisations outside the EU will also have to comply.
Implementation has been in effect since 25 May 2018. In many countries and organizations, the integration of this legislation has already started well, but gaps often remain.
What’s at stake?
The GDPR gives authorities and citizens greater power to prosecute organizations in the event of security breaches in their databases. Significant penalties: Up to €20,000,000 or 4 of annual revenue. … to add to other indirect costs in terms of customer relationship, public and press relations, following the public finding of a security breach in an organization or company.
The GDPR clearly states that you must:
1. Implement security measures to protect personal data
Encryption or Encryption is explicitly recommended in law as the only reliable solution to secure data.
2. Individually inform each person (CNIL) in the event of an attack on your personal database
This individualized information must be made without delay. However, if you can prove that the data being attacked was encrypted, this information is not mandatory.
3. Pay penalties for attacking your personal database
If it is proven that the data was properly encrypted. These penalties may not be imposed on you (subject to legal proceedings).
You can also check out our offer:
Service provided by Philemonday Network