GDPR

Welcome to GDPR Insights, the place to find out more about the hot topics and news related to GDPR.

The General Data Protection Regulation (GDPR) came into effect on 25 May 2018. The objectives and principles of the previous data protection regime were still regarded (including by the Commission) as sound and so the GDPR retains many of the current concepts, definitions and principles. However, for a number of years the data protection regime has been criticised for being inconsistent and out of date.

A new principle of accountability sitting with businesses, enhanced data subject rights and increased requirements on both data controllers and for the first time directly on data processors all combine to mean that developing a compliance culture is now a necessity rather than a ‘nice to have’. Breaches of the new rules could lead to increased fines and will have a highly detrimental impact on an organisation’s reputation. The maximum fine for non-compliance could be up to 4% of total worldwide turnover (for the preceding year) or €20 million, whichever is the greater.

GDPR applies across Europe, making a consistent approach easier than it has been historically. GDPR compliance does need to be an overwhelming task with the correct support. Our Data Protection team is always on hand to provide commercially focused advice on understanding and addressing the GDPR obligations relevant to your organisation.

We hope this section provides you with some interesting and useful insights into GDPR. If you are looking for more information or help from our CMS Data Protection Team please contact us.