The clock is ticking. Literally and figuratively. Just visit the GDPR portal, and you’ll see a daunting days-hours-minutes-seconds countdown titled, “Time Until GDPR Enforcement.”
The GDPR, short for General Data Protection Regulation, was approved by the European Union (EU) Parliament in 2016 and will be enforced starting May 25, 2018. The GDPR is a significant change in data privacy regulation aimed at protecting all EU residents from privacy and data breaches. It grants individuals greater control over their personal information, giving them a say regarding how their data is handled, including what information is used, whether it’s transferred to third parties, and when it is erased.
You’re not headquartered in Europe, you say? Well, what makes this legislation most unique (and controversial) is its “increased territorial scope.” GDPR sets forth regulations for any business that controls or processes EU resident data, regardless of location. So, if your association has employees, members, prospects or customers residing in the EU (regardless of their citizenship), you’re required to meet GDPR compliance standards.
And, if you don’t comply, you’ll be subject to stiff monetary fines.
It’s an extremely complicated topic; one which I and others have been studying for several years now. So, rather than start from scratch, I invite you to learn from our panel of experts at our upcoming live webinar, “Panel Discussion: Let’s Talks About GDPR.” Scheduled for Thursday, March 29 at 12 p.m. ET, the webinar will provide insights into what GDPR is and how it impacts every association, how to ensure your association is compliant, guidance on association-specific challenges and positive impacts of “privacy by design.” I hope to see you online!