Are you in compliance?

Don't miss out! Sign up today for our weekly newsletters and stay abreast of important GRC-related information and news.

Corporate Compliance

What is GDPR?

The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU). The primary objective of the GDPR is to give citizens back control of their personal data.  

When is the GDPR coming into effect? 

The EU’s General Data Protection Regulation will take effect on 25 May 2018.

What is personal data under GDPR?

"Personal data" means any information relating to an identified or identifiable natural person ("data subject"); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, online identifier, etc.

Who does the GDPR affect?

The global scope of the GDPR’s application is significant. It applies to any company—even those outside the European Union—that offers goods or services to individuals in the European Union, or that monitors the behavior of EU citizens. 

What are the penalties for non-compliance?

Penalties for non-compliance are severe. Companies that don’t meet the new requirements can face fines up to four percent of total annual global revenue or €20 million (U.S.$21.5 million), whichever is higher. 

What is the difference between a data processor and a data controller?

Data controllers are those who collect and own the data. Data processors are, essentially, third-party vendors; they process the personal data on behalf of the data controllers.


News Article

5 steps to ensure GDPR contract compliance

Mark Ross | November 21, 2017

The General Data Protection Regulation takes effect in just a few short months. For those struggling with the huge burden GDPR entails, here are some tips for contract compliance.

GRC Announcements Blog

ZL Technologies enters EU with GDPR Ready Solutions

GRC Announcements | November 3, 2017

ZL Technologies, a provider of unified governance, eDiscovery, compliance, and analytics for large enterprises, recently released a new suite of solutions that will enable organizations to meet requirements set forth by the EU General Data Protection Regulation.