The GDPR – How to Deal with the Aftermath
The General Data Protection Regulation (GDPR) took effect Friday, May 25th, 2018.
You’ve probably heard about the GDPR by now – its trending on all your feeds, your own company is concerned – but you’re wondering how it truly affects you. The long and short of it: The GDPR will touch all companies globally that hold the data of EU citizens.
A lot of companies are staring down the barrel of some pretty hefty fines if they don’t get their act together to comply with the protections the GDPR grants EU citizens.
But, let’s say Friday has come and gone. Your company is in compliance with the GDPR, but WHAM – a data breach occurs. What do you do? Where do you go from here?
Option 1: Panic!
Option 2: Ignore it.
Option 3: Keep calm, and discover, provide insight, take action.
DAY 1 Discover - Ask yourself some key questions:
- Do you have systems in place to protect data?
- Do you have processes in place to detect and respond to a data breach?
- Do you have a data protection officer?
DAY 2 Provide Insight – Figure out how the breach happened:
- Where did it occur?
- How widespread is it?
- Has any damage occurred?
DAY 3 Take Action – If personally identifiable information (PII) was exposed, you need to take action:
- Inform relevant supervisory authority
- Inform affected individual(s) without delay
You may believe your company is protected, but don’t chance hefty fines if you’re breached after the 25th has come and gone. Follow Ivanti’s approach by discovering the breach, providing insight into it, and taking action against it.
And, get the ultimate form of protection with Ivanti solutions – we secure data, detect breaches, and respond to the fallout. Visit ivanti.com or email [email protected].