INTRODUCTION

Due to be enforced from 25 May 2018, the European Union’s General Data Protection Regulation (GDPR) will require all data controllers and processors that handle the personal information of EU residents to “implement appropriate technical and organisational measures […] to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services” or face fines of up to €20 million or 4% of annual global turnover – whichever is the greatest.

The GDPR is the latest step in the ongoing global recognition of the value and importance of personal information. Although the information economy has existed for some time, the real value of personal data has only become more recently evident. Cyber theft of ...

Get EU General Data Protection Regulation (GDPR): An Implementation and Compliance Guide - Second edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.