If you haven’t heard about GDPR, where have you been? The current Data Protection Act has changed. From the 25th of May 2018, new legislation will apply to every organisation – with no exceptions – that focuses on their accountability for data. Companies must report any data breaches, and any organisation found to have breached GDPR will be fined up to 4% of their turnover.
Few organisations have the in-house resource to manage the full ongoing requirements of GDPR. This is because of the exacting demands of the role, making CISOs with specific GDPR expertise hard to find and expensive to employ. Most resident CISOs therefore benefit significantly from the added value, support and resource provided by industry experts with wider GDPR experience.
Many organisations require a higher level of support in fulfilling the CISO or DPO roles to meet the exacting requirements of GDPR. Engaging with an industry-respected GDPR team will ensure that all appropriate steps are taken in a timely and cost-effective manner.