The European Union’s General Data Protection Regulation (GDPR) became officially enforceable as of May 25, 2018. GDPR establishes sweeping regulations around the use, protection, privacy, and export of data for all individual persons within the EU. The regulation impacts both EU and non-EU organizations that house the data of EU citizens.
Given the scope and impact of GDPR, organizations have been preparing diligently for its enactment since the regulation was adopted in April 2016. With GDPR now in effect, global HR organizations will need to partner closely with legal, IT, and other data privacy stakeholders to ensure ongoing privacy and security of employee data.
Your Ongoing GDPR Compliance Checklist
With GDPR now in effect, the mandate for global organizations to be transparent with how data is used and maintain data security is stronger than it has ever been. The consequences of non-compliance are compelling—organizations can be fined up to €20 million (nearly $24 million) or 4% of revenues.
While preparations for the May 25 implementation of GDPR have been extensive, the work to maintain compliance is only beginning. HR organizations, which house a wealth of information about potential, current, and former employees, must adopt an aggressive continuous improvement approach to protect HR data and ensure full transparency around how HR data is used.
The Telegraph: GDPR could result in higher ransomware demands, experts warn
This report is part of the Human Capital Compliance Minute series. To view all featured Minutes, please click here.
Sussex Economic Advisors is now part of ScottMadden. We invite you to learn more about our expanded firm. Please use the Contact Us form to request additional information.