The European Union will begin enforcement of its General Data Protection Regulation (GDPR) on May 25. Is your organization ready?
“The thing about GDPR is you never know when a breach is going to take place,” says Steve Durbin, managing director of the Information Security Forum (ISF), a global, independent information security body that focuses on cyber security and information risk management. “One of the biggest challenges that I think comes with the GDPR is how do you enable an ongoing program within the enterprise? It’s not a tick-box exercise. There is a fundamental change required in an enterprise in order to comply on an ongoing basis with the GDPR.”