By the end of 2018, over 50% of companies affected by the GDPR will not be in full compliance with its requirements.
Taking effect in May of 2018, the European Union (EU) General Data Protection Regulation (GDPR) will require global organizations to control, process and protect the personal data of EU citizens at a much higher level than they do today.
Prepare for GDPR with Forcepoint
Forcepoint provides organizations deep visibility into how critical data is processed across an infrastructure, whether on-premise, in the cloud or in use by a remote workforce. Forcepoint Data and Insider Threat Security not only provides the ability to monitor, manage and control data (at rest, in use and in motion) but also utilizes behavioral analytics and machine learning to discover broken business processes and identify employees that elevate risk to critical data.
Rated by Gartner as a leader in regulatory compliance, Forcepoint DLP provides the industry’s most innovative data loss prevention technologies that provide visibility into user behavior to automatically identify data incidents that pose the greatest risk.
Who will be affected by the GDPR?
Organizations that will be required to achieve compliance with the GDPR include not only those inside the EU, but also those that control and process EU citizen data.
Compliance with the GDPR is vital: the legislation provides for severe administrative sanctions against controllers or processors who violate data protection rules. Organizations can face fines of up to €20 million or 4% (whichever is greater) of their global annual turnover for intentional or negligent violations.
The road to GDPR compliance
The GDPR will focus on data protection from the initial identification and protection of personal identifiable information (PII) through to the required prompt notification of a data breach incident to the relevant supervisory authority.
GDPR compliance will add new security responsibilities and obligations:
- Notify of data breaches within 72 hours of awareness
- Provide transparent information to data subjects
- Demonstrate data subject’s consent to processing of personal data
- Pseudonymize and encrypt personal data
- Quickly respond and action data subjects requesting erasure of personal data
Is your organization prepared for the GDPR? Download the GDPR Resource Pack to learn how the regulations will impact your organization and how to ensure your security posture meets the new standards.