The GDPR will apply to all companies processing Personal Identifiable Information (PII) of citizens residing in the EU, regardless of the company’s location.
PII is personal data that could potentially identify a specific individual, such as: copies of passports, CVs, employment history, financial details, address details, medical details, sales prospect/marketing data, location data, or customer information.
Organisations will now have to comply with much stricter guidelines around data management and policy. All EU citizens will now have the right to:
All EU organisations must demonstrate compliance by Storing, Managing, Destroying and Auditing PII appropriately.
The new GDPR legislation will be introduced on 25th May 2018. Non-compliance by this time will incur heavy fines. These financial penalties can be up to 4% of your annual global turnover, or €20 Million – whichever is greater (although there is a lower tier for lesser breaches of 2% or €10 million).
Apogee can work with your organisation to understand your current situation and help develop a bespoke strategy and plan of action to work towards GDPR compliance before the deadline and avoid heavy penalties that will be imposed.
Get in touch today and discover how Apogee can help your organisation develop a strategy for GDPR compliance before heavy penalties will be imposed.