Understanding GDPR (General Data Protection Regulation)
The right to privacy is a developed area of law in Europe. In 1980, OECD - Organisation of Economic Development issued guidelines governing protection of Privacy & Trans-border flows of personal data. These guidelines were however, not binding and data privacy laws varied across Europe. In April 2016, GDPR -General Data Protection Regulation was agreed upon by European Union (to be established by May 2018). The purpose of GDPR is to impose a uniform Data Security law on all EU members so that they need not write its own data protection laws. The five benefits to focus on adopting GDPR are- 1) Improve Data Management with Data subject rights. 2) Enhance Cyber security, cross border data transfer, Breach of security. 3) Increase market returns on Investment. 4) Accountability and loyalty, Training and awareness. 5) Third party vendor Management, Notice and consent. Under GDPR, if an entity offers goods & services to any business/person in EU and collects and process