The new GDPR requirements for data privacy will bring a raft of new obligations on companies and the way they store, process and protect personal data. Whilst some of the necessary processes are already going to be in place under existing Data Protection legislation, GDPR enhances and expands those requirements.
At it's heart, GDPR is about greater protection and privacy for EU citizens. For businesses operating in or with the EU, they will need to look to their IT systems and their business processes to ensure compliance. And the need to be able to demonstrate and prove compliance will become paramount. Don't just follow the rules, be prepared to show how you've done it and record what you've done. This is where your systems and platforms will be essential tools to support that compliance.
This is no time for burying your head in the sand and this article gives a good set of pointers to consider in your build up to compliance.
“From now, hardly any personal data will not fall under the GDPR, making it difficult for organisations to avoid having to comply with its requirements,”