The EU's new General Data Protection Regulation (GDPR) will enter into force next year. Is your startup prepared?
After four years of debate, GDPR was ratified by the European Union in April 2016 and has now become law, although member states have six more months to implement it.
This means that companies will be expected to be fully compliant by May 25, 2018. The regulation is intended to establish one single set of data protection rules across Europe.
Organizations outside of the EU are subject to this regulation when they collect data concerning any EU citizen.
In “GDPR: A Canadian Case Study” we provide an overview of what this regulation entails, what Canadian companies have to do to comply, and how it compares to PIPEDA. Stay tuned for forthcoming content that will dive into each of these points in much greater detail.