GDPR: How Europe’s digital privacy rules have changed everything

On 25 May 2018 the European Union’s General Data Protection Regulation (GDPR) came into force. At its heart, GDPR set out to update rules around privacy and consent for the digital age and to ensure that organisations are responsible in their handling of their customers’ personal data – and that those customers are aware of how their data is being used and that they consent to it.

The legislation is designed to ensure that precautions are made to protect personal data, and that if an organisation falls victim to an attack or breach where personal data is accessed, they report it to their customers and the authorities within 72 hours of being made aware of the incident.

In the run up to the legislation coming into force, companies rushed to improve their processing of personal data, for example getting explicit consent from customers to hold onto their data, or hiring data protection officers to oversee GDPR compliance projects.

Read more…
Source: ZDNet