General Data Protection Regulation (GDPR) has a significant impact on how the privacy and data protection will be managed in the near future. Increased usage of digital media and platforms, IoT (Internet of Things) and data sharing with partner ecosystem means data protection and privacy are key aspects to consider. GDPR deadline is set for 25 May 2018 and organisations must take necessary steps to make changes needed in their processes, technologies and train the teams better.
While several organisations feel secure and compliant based on existing legislation, challenges of implementing GDPR requirements across the lifecycle of personal data must not be underestimated. Organisations must clearly understanding how much PI they hold, why they retain it and how it is being used. With provisions for heavy fines and penalties for every data breach, the time to act is now!