Your business may be subject to compliance regulations such as HIPAA, or PCI-DSS already – but have you started considering GDPR as well?
The General Data Protection Regulation (GDPR) is meant to protect EU citizens from data breaches as a result of transactions that occur within any EU member, even those residing in the US – so if you do any form of business with EU citizens, you must comply.
Many U.S. and Canadian businesses have been working hard to meet the new GDPR guidelines, but it’s not clear if others have the technology in place to notify individuals that their data was breached within the required 72-hour period.
This is one of the primary components of the 2018 GDPR. No matter how you look at it, three days can go by very quickly when it comes to sending out data-breach notifications, especially if you haven’t planned in advance.
Unsure of how GDPR could impact you? Click here to schedule your GDPR Compliance audit right now.