By the time you read this, the most comprehensive and sweeping data security regulation will have just gone into effect. With a May 25, 2018 effective date, the European Union’s Global Data Protection Regulation (GDPR) reaches around the globe, including to entities in the U.S. Noncompliance can lead to significant fines of up to four percent of annual global revenue or 20 million euros, as well as civil and even criminal liability.
It is critical for U.S. entities and legal and insurance professionals advising those entities to be aware of the scope of this regulation to determine whether they are subject to it, and to take the necessary steps towards compliance. Even if it is determined that the GDPR is not applicable to your organization, there are a number of practical steps you can take to better your overall cyber hygiene.
Read the full article here: Healthy Habits for GDPR: Good Cyber Hygiene Is Now Required by Law