EU General Data Protection Regulation (GDPR)
What is GDPR?
GDPR replaced all previous data protection acts and regulations across the EU. It was approved in April 2016 and came into effect in May 2018. In Ireland it replaced the Data Protection Acts 1988 and 2003.
GDPR and how it affects you
The legislation brought in a large number of changes, meaning that the level of effort in preparing for GDPR compliance is significant. Organisations need to start preparing for GDPR compliance to avoid severe fines if found non-compliant. The GDPR gives the Office of the Data Protection Commissioner more robust power to tackle non-compliance, including significant administration fining capabilities of up to €20m (or 4% of total global turnover, whichever is greater).
Crowe can assist you in identifying, planning for and meeting your data protection obligations. How Crowe can help your organisation become data-compliant:
- Assess your organisation's current structure and GDPR readiness
- Identify and report on the GDPR risks and compliance gaps within your organisation
- Identify areas of most material non-compliance and prioritise mitigating steps, especially in relation to high-risk processing activities
- Ensure data protection is incorporated into your organisation's Risk Register
- Offer practical solutions to become GDPR-compliant
- Conduct Data Privacy Impact Assessments
- Assist in the development of GDPR policies and procedures
- Provide data protection training across your organisation
The GDPR team at Crowe can help you devise and implement a plan to ensure compliance. If you would like to find out more about how we can help you, contact Roseanna O'Hanlon from our risk consulting team.
