“Data breach notification is no longer a media relations issue or opportunistic PR choice: it’s law, with fines for non-compliance amounting up to 4% of the organization’s worldwide turnover. The risk is now existential, and the financial impact of GDPR enforcement on businesses makes it imperative to escalate data protection issues to the executive board. This is a battle that you don’t have and shouldn’t have to fight alone.
Maybe your board has already dealt with the “privacy posture” issue. Perhaps your CEO has already consulted you and formulated a strategy, so now you have all of the following:
- A budget earmarked for GDPR compliance
- Buy-in from your Chief Marketing Officer
- Buy-in from your HR
- A roadmap, people and processes in place to ensure your whole organization meets the 24 months deadline.
If so, congratulations.
If not, you may want to take on the GDPR readiness initiative before it lands on your desk with only one month to go to the deadline. Now is the time to have the “privacy conversation” with your board.” – Chiara Rustici via Help Net Security, February 26th 2016
Chiara’s great article focuses on the practicalities of GDPR – most notably convincing senior level decision makers of its impact. GDPR is deceptive – its a data protection law and its implications for B2B marketing or data storage are not always obvious. Convincing some of this fact is somewhat an uphill battle.
Yet the fact remains that GDPR is coming and a surprising number of companies are still unaware of that. If you or your company is in any doubt about who precisely will be affected by GDPR Chiara’s article is well worth a read.