EU 679/2016, which came into effect on
25 May 2018, is the main data protection law which imposes many obligations on organizations that collect, handle, or analyze personal data.
GDPR also gives national regulators new powers to impose significant fines on organizations that breach the law.
Following the GDPR Compliance, a Data Protection Officer (DPO) should be appointed where required by law (the data held is either sensitive – minors / health – or at a high volume).
GDPR Compliance Services
To become GDPR compliant, an organization should fully audit their data flow, map all data collected, held and processed, perform gap analysis and impact assessments and redesign the procedures applied regarding data handling and audit in order to achieve a high level of data protection, in compliance with GDPR, whether data is physical (hard copy) or digital.