GDPR: Here

GDPR: Here's What You Need to Know

The European Union will begin to enforce strict data security starting in May. Here's what you should know.

After a two-year transition period, the General Data Protection Regulation becomes enforceable on May 25, 2018. The looming deadline created by the European Union has created a headache for those who deal with personal data and it can be hard to wade through all the information to ensure that you are in compliance with the new regulation. Here's a breakdown of GDPR and why it is important to you, even if you are an American company just looking to do business in Europe.

What is GDPR?

The European Union's General Data Protection Regulation is a sweeping data protection law that not only affects European businesses, but all organizations handling the personal data of EU citizens. Moving forward, if a data breach is the result of noncompliance, companies will face unprecedented fines of up to €20 million (about $24 million) or four percent of global annual revenue for the previous financial year, whichever is higher.

Essentially, if you want to conduct business with Europe, you'd better comply.

The deadline for compliance is just months away at this point. Companies have already started to work towards the strict guidelines of the regulation, but if you are still wondering what you should be doing, here's three important steps for navigating GDPR:

Understand GDPR Requirements

GDPR is not easy to consume in one sitting. There are 99 articles in the table of contents and only some articles may apply to your business and/or industry more than others. If you don't have someone who is versed in the language of regulations, it can be a lot to handle on your own. You can't possible solve a problem if you don't even understand what the problem is.

To help with this, you should consider consulting with a compliance expert who can interpret the most critical parts of the regulation as they pertain to your company. The compliance expert can also help you set up critical procedures and policies that you must carry out if you are hit by a data breach, like Article 33 that says you must notify EU authorities and any citizen affected within 72 hours of a data breach being discovered.

Access Your Risk

Part of being GDPR compliant is the need of an entire map of your data footprint. Companies must determine where personally identifiable information resides and how it is being handled. Understanding how each piece of data moves through your company is critical, because then you can move towards identifying and creating plans for remediation, if needed.

The new GDPR will undoubtedly create new processes within departments that will impact flow and efficiencies, but having managers and employees involved in the risk assessment process from the beginning will minimize disruption while ensuring their understanding of their responsibility in data security.

Leverage GDPR to Improve Security Practices

It may seem like a lot of work to become compliant, but compliance doesn't equal security. Cybercriminals are constantly evolving and so should your security procedures. Use the upcoming GDPR deadline an exercise to evaluate and streamline all security processes and procedures and identify areas that need improvement. Find out if the current security you are using is enough to cover your gaps and keep data protected.

GDPR is the beginning of a new era of strict data regulations. Are you prepared?

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

  • New Gas Monkey Garage Venue Uses AI-Enhanced Video Technology

    Gas Monkey Garage, the automotive custom shop and entertainment brand founded by Richard Rawlings of Fast N’ Loud TV fame, has opened a vibrant new restaurant and bar in South Dakota, equipped with advanced, AI-enhanced video tech from IDIS Americas. Read Now

  • Data Driven, Proactive Response

    As cities face rising demands for smarter policing and faster emergency response, Real Time Crime Centers (RTCCs) are emerging as essential hubs for data-driven public safety. In this interview, two experts with deep field experience — Ross Bourgeois of New Orleans and Dean Cunningham of Axis Communications — draw on decades of operational, leadership and technology expertise to share how RTCCs are transforming public safety through innovation, interagency collaboration and a relentless focus on community impact. Read Now

  • Integration Imagination: The Future of Connected Operations

    Security teams that collaborate cross-functionally and apply imagination and creativity to envision and design their ideal integrated ecosystem will have the biggest upside to corporate security and operational benefits. Read Now

  • Smarter Access Starts with Flexibility

    Today’s workplaces are undergoing a rapid evolution, driven by hybrid work models, emerging smart technologies, and flexible work schedules. To keep pace with growing workplace demands, buildings are becoming more dynamic – capable of adapting to how people move, work, and interact in real-time. Read Now

  • Trends Keeping an Eye on Business Decisions

    Today, AI continues to transform the way data is used to make important business decisions. AI and the cloud together are redefining how video surveillance systems are being used to simulate human intelligence by combining data analysis, prediction, and process automation with minimal human intervention. Many organizations are upgrading their surveillance systems to reap the benefits of technologies like AI and cloud applications. Read Now

New Products

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area.

  • Camden CM-221 Series Switches

    Camden CM-221 Series Switches

    Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings.

  • HD2055 Modular Barricade

    Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation.