What is GDPR and GDPR Compliance?
The EU General Data Protection Regulation (GDPR) is built around two key principles:
- Giving EU citizens (data subjects) control of their personal data
- Simplifying and strengthening regulations for businesses with a unified approach across the European Union
It’s important to note that the GDPR will apply to any business that processes the personal data of EU citizens which means that it could also apply to companies based outside of the EU. The UK government has confirmed that Brexit will not affect the GDPR start date, or its immediate running and it will commence from the 25th May, 2018. GDPR has implications for all organisations that collect information about customers resident in the EU, and whilst the telecommunications and IT sectors have adhered to a strict regulatory regime for a number of years there are changes that the GDPR compliance will bring. This page aims to outline some of the most significant changes that are coming, and will also highlight the Columbus view and update on the General Data Protection Regulation.