The General Data Protection Regulation, or GDPR for short, is a new data protection law in the European Union. It is set to come into force towards the end of May 2018. The ultimate aim of GDPR is to provide citizens of the EU with greater control over their personal data. It will also contribute towards the change of attitude of worldwide organisations towards data privacy.
Essentially, businesses and organisations that collect and process personal data can keep on providing their services and products to consumers that are EU citizens. In doing so they must ensure that they look after their personal information. As an EU Member state, Malta will also be abiding by the GDPR.
Anyone that acts as a Data Controller, as defined by the GDPR, collects and processes personal data and will need to comply with these new laws. This includes any company that uses websites or apps, internal databases, Customer relationship management (CRM) software, and even email marketing.
The GDPR will reinforce existing laws and will be more restrictive than the ‘EU Cookie Law’. Companies using the above features must ensure that they meet the necessary criteria as laid out in this new regulation. It should also be noted that it is being taken very seriously by the EU. The penalty for non-compliance can be up to 4% of annual global turnover capped at a maximum of €20 million.
Our team at NIU is on hand to lend its expertise in assisting you in making your website GDPR compliant. When it comes to keeping up with the changing landscape, you can trust that NIU will be there to assist you during every step.