With the growth of the ‘always on’ culture, driven by the ever-expanding capabilities of mobile devices and the increase in the digital transformation of services, a wide range of identifiable and behavioral data that is now collected and processed by organizations every time we interact online. At the same time, how and where organizations store and process this data has moved from inside the traditional IT perimeter and server rooms into hybrid and cloud environments in data centers across the globe.
This change in the information landscape has brought something new to everyone’s as of late – the General Data Protection Regulation (GDPR), which went into effect May 25th, 2018. While most of you probably have heard of the new regulations, it’s now more important than ever to focus on getting your organization compliant.
The regulation itself has been around for a couple of years but the enforcement, including fines and penalties, have been in full effect for almost 3 months now. Really, the key for organizations is making sure that we continue to focus on the importance of protecting our data and what we do with it. We've already seen suits come out of several large, well-known companies right after the start of the enforcement, because – most likely – they were not ready.