GDPR
General Data Protection Regulation
In April 2016, the Regulation of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data, in short the General Data Protection Regulation (GDPR), was adopted. In order to adapt to the new regulations that apply throughout the EU, entrepreneurs they had to or must make numerous legal and organizational changes.
Organizations whose business activity is based mainly on the processing of personal data must comply with the new regulations:
-
a much broader definition of personal data,
-
explicitly defined conditions for the processing of personal data,
-
additional rights of natural persons,
-
new obligation for the processing of personal data,
-
administrative penalties for non-compliance with the provisions of the regulation may amount to EUR 20 million or 4% of the annual global turnover of the organization. In addition, individuals will have the right to seek legal redress and claim damages in excess of the statutory fines.
Businesses must comply with the new regulations to avoid significant penalties. At the same time, these changes should be seen as an opportunity to increase the effectiveness of your actions.
How can the BCMLogic Platform help?
The BCMLogic GDPR module helps organizations meet these GDPR requirements by automating privacy impact assessments and data mapping, identifying privacy threats, and enforcing risk management activities within an integrated platform.