The General Data Protection Regulation (GDPR) requires businesses to protect personal data and privacy of European Union (EU) citizens for transactions that occur within EU member states. These rules became effective May 25.
The GDPR is expected to set a new standard for consumer rights regarding their data. This will be challenging for companies as they put processes in place to comply.
The GDPR says that companies must provide a “reasonable” level of protection but doesn’t define what constitutes “reasonable.” This gives the GDPR governing body leeway when assessing fines for data breaches and non-compliance. Find out more here.
– Abbie S. Fink, The Arizona 100