03972nam 2200457 450 991015510920332120200110013236.51-84928-836-4(CKB)3710000000973130(MiAaPQ)EBC4794155(CaSebORM)9781849288378(EXLCZ)99371000000097313020170216h20162016 uy 0engurcnu||||||||rdacontentrdamediardacarrierEU General Data Protection Regulation (GDPR) an implementation and compliance guide /ITGP Governance Privacy Team1st editionCambridgeshire, England :IT Governance Publishing,2016.©20161 online resource (312 pages)1-84928-837-2 1-84928-835-6 An in-depth guide to the changes your organization needs to make to comply with the EU GDPR. The EU General Data Protection Regulation (GDPR) will supersede the 1995 EU Data Protection Directive (DPD) and all EU member states’ national laws based on it – including the UK Data Protection Act 1998 – in May 2018. All organizations – wherever they are in the world – that process the personally identifiable information (PII) of EU residents must comply with the Regulation. Failure to do so could result in fines of up to €20 million or 4% of annual global turnover. US organizations that process EU residents’ personal data can comply with the GDPR via the EU-US Privacy Shield, which replaced the EU-US Safe Harbor framework in 2016. The Privacy Shield is based on the DPD, and will likely be updated once the GDPR is applied in May 2018. This book provides a detailed commentary on the GDPR, explains the changes you need to make to your data protection and information security regimes, and tells you exactly what you need to do to avoid severe financial penalties. Product overview EU GDPR – An Implementation and Compliance Guide is a clear and comprehensive guide to this new data protection law, explaining the Regulation, and setting out the obligations of data processors and controllers in terms you can understand. Topics covered include: The role of the data protection officer (DPO) – including whether you need one and what they should do. Risk management and data protection impact assessments (DPIAs), including how, when and why to conduct a DPIA. Data subjects’ rights, including consent and the withdrawal of consent; subject access requests and how to handle them; and data controllers’ and processors’ obligations. International data transfers to “third countries” – including guidance on adequacy decisions and appropriate safeguards; the EU-US Privacy Shield; international organizations; limited transfers; and Cloud providers. How to adjust your data protection processes to transition to GDPR compliance, and the best way of demonstrating that compliance. A full index of the Regulation to help you find the articles and stipulations relevant to your organization. The GDPR will have a significant impact on organizational data protection regimes around the world. EU GDPR – An implementation and Compliance Guide shows you exactly what you need to do to comply with the new law. About the authors IT Governance is a leading global provider o...Data protectionLaw and legislationEuropean Union countriesPrivacy, Right ofEuropean Union countriesComputer securityLaw and legislationData protectionLaw and legislationPrivacy, Right ofComputer securityLaw and legislation.342.240858Team IT1356653MiAaPQMiAaPQMiAaPQBOOK9910155109203321EU General Data Protection Regulation (GDPR)3361315UNINA