New laws in the European Union
The cyber threat environment in Europe is
evolving rapidly. The growing size, sophistication and severity of
attacks mean that traditional security systems can often be
overwhelmed or circumvented. Even the most sophisticated cyber
security systems are being thwarted, as hackers engineer increasingly
innovative attack techniques that often target the weak links such as
suppliers and employees.
The General Data Protection Regulation
(GDPR) is not just another data security regulation. It is a sweeping
piece of European Union (EU) data protection legislation that will
impose significant new obligations on how organizations handle
personal data as it makes doing business easier.
Its purpose is to consolidate and
simplify rules related to the processing of information about
customers, clients and prospects, including the free movement of data
across and between organizations. Non-compliance could be a
significant threat to an organization’s reputation and bottom line.