What is GDPR?
The General Data Protection Regulation (GDPR) was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy, and to reshape the way organizations across the region approach data privacy.
GDPR was adopted in April 2016 by the EU Parliament and will be effective on May 25, 2018.
The scope of GDPR is any processing of Personal Data from EU data subjects.
This means increased Territorial Scope (extra-territorial applicability). Indeed, GDPR applies to all organizations processing the personal data of data subjects residing in the European Union, regardless of the company’s location. In other words, a company based outside of the EU but processing personal data of EU residents will be required to abide by GDPR.
All EU organizations and any international company processing data from EU citizens which are in non-compliance by the due date may face heavy fines of up to 4% of annual global revenues or €20 Million (whichever is greater).
These rules apply to both Data Controllers (the company which owns the data, ie you, the Accengage customer) and Data Processors (the company which processes data on behalf of the Data Controller, ie Accengage).
Disclaimer: this web page was created to help you understand the new legislation and to illustrate how Accengage has taken action. Please bear in mind that the content of this web page is no legal advice and must not be used to determine whether or not your company is GDPR compliant. Accengage strongly recommends you to consult a specialized lawyer on the subject of GDPR.