Is your organization ready for the new EU General Data Protection Regulation?
On May 25, 2018, the EU General Data Protection Regulation (“GDPR”) will impose significant new obligations on all U.S. companies that handle personal data of any EU individual. U.S. companies can be fined up to €20 million or 4% of their global annual revenue for the most egregious violations. What does the future passage of GDPR mean for your business?
What GDPR Requirements Will Be Associated with the Most Significant Sanctions?
- Increase EU GDPR processing and transfer documentation, and audit process to reflect organizational compliance accountability
- What EU personal data map do organizations need to develop and update in order to comply with GDPR requirements
- Under the GDPR, how must organizations handle issuance and execution of U.S.-based legal hold notices on EU personal data
- Do organizations that file for Privacy Shield status after September 30, 2016 need to demonstrate existing GDPR processes and documentation
- GDPR audit controls to include, among others, (1) Privacy Shield compliance, if asserted, (2) adequate basis for processing and transfer of EU personal data in business, litigation, and regulatory context, (3) review of organizational intelligence data privacy data map that reflects how EU personal data is created, processed, transferred (including onward transfers), stored, and destroyed (once its purpose is achieved)
*CLE Credit for this webinar has been awarded in the following states: CA, IL, NJ and NY. CLE Credit is pending for GA, TX and VA. Please note that in order to receive full credit for attending this webinar, the registrant must be present for the entire session.