Download the Privacy Program Maturity Model PDF

GDPR is a single, binding legislative act that reflects the implementation of the Unified Data Protection Strategy. It is a complex regulation that may require significant changes in how you gather, use and manage data. GDPR imposes new rules on organizations that offer goods and services to people in the European Union (EU), or that collect and analyze data tied to EU residents, no matter where they are located.

For organizations responsible for GDPR compliance, the following are key areas included in the regulation:

    • Enhanced personal privacy rights: Strengthened data protection for individuals within the European Union (EU) by ensuring they have the right to have access to data, to correct inaccuracies, to erase data, to object to processing of their information, and to move their data.
    • Increased duty for protecting data: Reinforced accountability of companies and public organizations that process personal data, providing increased clarity of responsibility in ensuring compliance;
    • Mandatory data breach reporting: Companies are required to report data breaches to their supervisory authorities without undue delay, and generally no later than 72 hours; and
    • Significant penalties for non-compliance: Steep sanctions, including substantial fines that are applicable whether an organization has intentionally or inadvertently failed to comply.

Templar Shield provides risk, data privacy and governance advisory services to help organizations prepare for GDPR. Please contact us for more information or a services portfolio.

Disclaimer/No Attorney-Client Relationship/No Legal Advice

Templar Shield consulting services are not legal advice or a legal opinion, and may not reflect the most current legal developments. You should seek the advice of legal counsel of your choice before acting upon any of the information provided.