The European Union’s (EU) new General Data Protection Regulation (GDPR), which goes into full effect in May 2018, creates a comprehensive regulatory regime for the way that personal data of EU citizens will be handled by organizations globally. Organizations that may process (i.e. collect, store, or otherwise handle) personal data of EU citizens are scurrying to be compliant with this strict new framework. The stakes are enormous: The GDPR substantially increases penalties for privacy violations to as much as four percent of a company’s annual global revenue.
How Did We Get Here?
The roots of the new GDPR can be traced back nearly 40 years, when the French parliament approved the Data Protection and Liberties Act in 1978. This law prohibited the processing of “sensitive” data, which included information related to the health or sexual life of individuals, but also any identifying information related to racial or ethnic origin, political opinions, religion or trade union affiliation.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
LexisNexis® and Bloomberg Law are third party online distributors of the broad collection of current and archived versions of ALM's legal news publications. LexisNexis® and Bloomberg Law customers are able to access and use ALM's content, including content from the National Law Journal, The American Lawyer, Legaltech News, The New York Law Journal, and Corporate Counsel, as well as other sources of legal information.
For questions call 1-877-256-2472 or contact us at [email protected]