One of the most notable events in the world of security and privacy in 2018 was the arrival of the European Union’s General Data Protection Regulation, or GDPR. The new rules took effect in May 2018, and represent perhaps the most wide-reaching, comprehensive data protection regulation in history. It applies not only to companies in the EU, but also to all organizations that process personal data about EU citizens.
The GDPR aims to give consumers more control over the personal data companies collect about them, and it covers conditions of content, data storage methods, data breach notifications and consumers’ ability to access and erase their data. Achieving compliance requires some companies to significantly alter the processes and technologies they use to manage data.
However, while the GDPR marked a dramatic change on paper, recent surveys suggest it has not had as much of an impact in the real world as one might think. Why? Because a large percentage of companies are still not compliant.
To read the full article, please click here.