Updated: Sep 15
April 3, 2018
On the 25th of May 2018, the General Data Protection Regulation (GDPR) will be enforced. The GDPR is a regulation in EU law (EU 2016/679) on data protection and privacy for all individuals within the European Union. This means that if you are controlling or processing data of EU individuals, you are likely required to comply with GDPR. In that case, you might have to adjust your business processes, adopt new technologies, and appoint a qualified data protection officer.
Privacy data means all information that can lead directly or indirectly to the identification of a person, like a name, phone number, bank account, email address, cookies, IP address, location data, and photos. Failing to prepare for compliance means preparing to fail and can lead to high fines of up to €20 million or 4% of your annual global turnover. IISRI offers specialized GDPR services to help New Zealand companies on this journey.