Cécile Georges
Global Chief Privacy Officer
The EU General Data Protection Regulation (GDPR) reshapes the way organizations must approach the privacy of EU citizens’ data. It’s not just EU-based organizations that are subject to the rules of GDPR—any organization that processes the data of EU citizens must abide by the regulation. So from an HR perspective, that means any company that employs EU data subjects.
The penalties for non-compliance could be huge (up to four percent of annual global turnover or €20 million — whichever is greater). The fines may not end up going to the maximum, but they could be high. So GDPR is top of mind for business leaders all over the world. For multinational companies, much of the complexity around data protection comes from having to deal with differing legal systems and regulations in different countries — and from transferring data between regions.
“If there are cases where one region has regulations that are more or less strict than others, the simple guiding principle is to meet the most stringent demands.”
“It’s an opportunity for you to focus even more on the principles of data protection that have served organizations for years.”
Handling GDPR shouldn’t be a headache. Our website shows you the latest developments and how to stay on the right side of the new rules.