EU General Data Protection Regulation: New challenges and opportunities

After more than four years of debates throughout Europe, the EU Parliament finally passed the EU General Data Protection Regulation (GDPR) in April 2016. Beginning on 25 May 2018, the unified rules apply throughout the EU and introduce some material changes. Companies face additional requirements and severe penalties for non-compliance. Therefore, it is more important than ever to focus on the establishment of effective data protection measures. But this often called “burden” caused by the new regulation is only part of the story, there is more to be told about it. So far, many companies still hesitate to use their data in the best way for their business, i.e., to invest in new data-driven business models. One of the reasons often mentioned is the difficulty to evaluate and control the risks. The GDPR might change that in the future as it follows a risk-based and technical approach. Methodologies such as standardization and certification, as well as modern concepts, like “privacy by design” and “privacy by default”, will help mitigate risks. Therefore, the GDPR can also be seen as an “enabler” and as an opportunity to develop new strategies to optimize the use of data. Hear from Deloitte's Legal and Risk team of experts to have a better understanding of the impact that the GDPR will have on the use of data in your businesses.(Live presentation was aired on 22 Sept 2016)