Few laws have had greater reach than the EU’s General Data Protection Regulation, which went into effect last May. Any business that collects the data of EU citizens must comply, and in today’s digital world that includes virtually any multinational organisation, whether or not it has a physical presence in an EU country.
Germany’s first GDPR fine underscores the willingness of authorities to enforce the law, but its relatively low amount may also indicate leniency for companies that take swift corrective action.
The EU’s General Data Protection Regulation has been extended to three additional countries — Iceland, Liechtenstein and Norway, which are part of the European Economic Area (EEA). We tell you why it’s critical for multinationals not to overlook this regulatory change.
Much media attention has been focused lately on the EU’s General Data Protection Regulation, but South Korea also has some of the world’s strictest privacy laws. Here's what you need to know to comply.