GDPR: A Practical Guide for U.S.-Based Organizations

January 4, 2019

The European Union (EU) Protection is aggressive about protecting consumer privacy and has been for a long time. The General Data Regulation (GDPR), which was adopted in April 2016 and became enforceable on May 25, 2018, supersedes Data Protection Directive 95/46/EC. This new regulation “harmonizes,” or brings into conformity with each other, the data protection laws of the 28 EU member states.

The GDPR empowers EU consumers with certain rights to help safeguard the privacy and protection of personal data. It hands back control of personal data ranging from name, web browsing history, gene sequences, and real-time location—to the consumer. The regulation provides EU consumers with the power to control, monitor, check and, if desired, delete any information pertaining to them that they deem necessary.

The GDPR is here to stay and the world is quickly catching up. This regulation has rapidly reshaped the way organizations around the globe approach data privacy and has spread far past EU borders. GDPR compliance is a journey, rather a destination, towards a secure data management lifecycle. The hardest part of any journey is taking the first step. In this guide, we have broken down this complex regulation to identify common road blocks and offer practical solutions to steer you in the right direction.

For more information, contact one of our risk advisory specialists at 301.231.6200.

Please sign up to read more and get access to locked content.