Are you GDPR ready?

Does your business have a presence in the EU or any of the European Economic Area countries? Even if you are not physically in the EU, do you offer products or services to EU residents or do you monitor their behaviour online?

If so, you need to ensure you are compliant with GDPR by May 25, 2018. GDPR will affect businesses globally as all those who offer products or services to or track data of EU residents will need to comply, regardless of their location. Read our GDPR blog.

Do you understand the importance of GDPR readiness?

GDPR comes into effect May 25, 2018, and the new regulations are not fully understood by all, especially organizations that have their main operations outside the EU. These changes cannot be taken lightly, as they apply to all organizations (regardless of geography) that collect and use personal data from EU residents. GDPR compliance is a must, and the risks of non-compliance are too great from many different perspectives:

Reputational

Non-compliance can result in brand damage and loss of trust with customers, business partners and GDPR Supervising Authorities.

Legal

Potential of class action law suits brought on by data subjects, that may result in huge legal and compensation costs.

Financial

GDPR is establishing fines of up to €20MM or 4% GLOBAL annual revenue, whichever is higher to the organization.

Operational

Any incident will result in interruption of day-to-day operations, as EU Supervising Authorities and data subjects must be notified within 72 hours of knowledge of the incident if there is a risk to the compromised individuals.

“The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy.”

www.eugdpr.org

Kirke can help you become GDPR compliant

Kirke Management Consulting ensures – through professional development and certification – that we are fully immersed in the developments around GDPR, so that we can in turn guide our customers, locally in Vancouver and across the country with their GDPR readiness and compliance requirements. Our data privacy consultants ensure that the three pillars of Privacy management are present and working together to enable an organization to reach a mature level in their privacy management practices.

10 Steps to GDPR Compliance

If you are unsure where to start or exactly what you need to do to become GDPR compliant, Kirke focuses on 10 key compliance requirements that work together to build the right foundation to protect your customers’ personal data.

GDPR Key Compliance Requirements

  1. 1. Governance
  2. 2. Accountability
  3. 3. Notice
  4. 4. Consent
  5. 5. Data Subject Rights
  1. 6. Data Mapping and Processing
  2. 7. Data Transfers
  3. 8. Data Protection by Design
  4. 9. 3rd Party Vendor Management
  5. 10. Breach Notification and Management

Find out where you are in terms of GDPR readiness. Complete our complimentary GDPR Assessment.

Press Release: Kirke Management Consulting Becomes STOP. THINK. CONNECT. ™ Partner

Read Article

Facebook-Cambridge Analytica: the Enron of privacy?

Read Article

Part 4: Ready… Set… Go! Achieving full GDPR compliance

Read Article

Part 3: Prioritizing GDPR Requirements

Read Article