How to protect personally identifiable information under GDPR

The European Union’s (EU’s) General Data Protection Regulation (GDPR) goes into full effect May 25, 2018, and it impacts any company, worldwide, that processes or stores personal data of EU residents. The new rules grant people more rights regarding how companies handle their personally identifiable information (PII), and it imposes heavy fines for non-compliance and data breaches–up to 4 percent of a company’s yearly revenue. The GDPR also requires that companies report data breaches within a 72-hour window. (See “General Data Protection Regulation (GDPR) requirements, deadlines and facts” for more specifics on the regulation.)

To read this article in full or to leave a comment, please click here