GDPR Business Brief

With cybercriminals threatening nations globally, cybersecurity is taking a
front seat in many regions, most notably the European Union (EU), which has
adopted regulations to combat the threats. Against the backdrop of increasingly
sophisticated cyberattacks, the EU has set forth rules and procedures for
enhanced cybersecurity, along with penalties for noncompliance, in the form
of the General Data Protection Regulation (GDPR). This new body of mandated
policies and procedures aims to protect EU member personal information
collected and/or stored by organisations, with regulation for the following
• Data privacy by design and default
• Data Protection Officers (DPO)
• Data breach reporting and security
• International data transfers
• Investigative, corrective, and advisory powers of supervisory authorities
• Right to compensation and liability