Ensure You Are GDPR Compliant

Does your business have a presence in the EU or any of the European Economic Area countries? Even if you are not physically in the EU, do you offer products or services to EU residents or do you monitor their behaviour online? If so, you need to ensure you are compliant with GDPR by May 25, 2018.

Understand The Risks

GDPR comes into effect May 25, 2018, and the new regulations are not fully understood by all, especially organizations that have their main operations outside the EU. These changes cannot be taken lightly, as they apply to all organizations (regardless of geography) that collect and use personal data from EU residents. GDPR compliance is a must, and the risks of non-compliance are too great from many different perspectives:

Reputational

Non-compliance can result in brand damage and loss of trust with customers, business partners and GDPR Supervising Authorities.

Legal

Potential of class action law suits brought on by data subjects, that may result in huge legal and compensation costs.

Financial

GDPR is establishing fines of up to €20MM or 4% GLOBAL annual revenue, whichever is higher to the organization.

Operational

Any incident will result in interruption of day-to-day operations, as EU Supervising Authorities and data subjects must be notified within 72 hours of knowledge of the incident if there is a risk to the compromised individuals.

“The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy.”

www.eugdpr.org

The Kirke Difference

Kirke Management Consulting ensures – through professional development and certification – that we are fully immersed in the developments around GDPR, so that we can in turn guide our customers, locally in Vancouver and across the country with their GDPR readiness and compliance requirements.

Kirke focuses on 10 key compliance requirements to assess current state status and develop a comprehensive execution plan to drive the organization towards GDPR compliance.

GDPR Key Compliance Requirements

  1. 1. Governance
  2. 2. Accountability
  3. 3. Notice
  4. 4. Consent
  5. 5. Data Subject Rights
  1. 6. Data Mapping and Processing
  2. 7. Data Transfers
  3. 8. Data Protection by Design
  4. 9. 3rd Party Vendor Management
  5. 10. Breach Notification and Management

Complete our complimentary privacy questionnaire

Prioritizing GDPR Requirements

Read Article

What to do about GDPR if you need to comply

Read Article

What is GDPR - foundational concepts

Read Article

GDPR series: achieving compliance within a tight timeframe

Read Article