Blog
 

GDPR

business handshake

41% of organizations are a year away from GDPR compliance (2018 Compliance Report)

The General Data Protection Regulation (GDPR) is a legal framework that applies to all organizations anywhere in the world that handles, stores, or processes the personal data of EU citizens. It dictates the procedures and consequences surrounding breaches and notification. GDPR came into effect across the EU on May 25, 2018.

GDPR Standards

  • You must ask for strict “opt-in” consent each time and for each purpose your organization
    uses a customer’s data
  • You must allow EU citizens to withdraw consent and prove deletion of consumer data
  • EU citizens may request their information at any time and you must provide it
  • You must notify authorities of data breaches within 72 hours of occurrence

GDPR Consequences

  • Fines of up to $20 million or 4% of global turnover, whichever is greater, per incident
  • Risk of class action lawsuits from data breach victims
  • Damage to your company’s brand and erosion of consumer trust
  • Long-term revenue loss

 


 

Educate

Educate employees with up-to-date courses that clearly define GDPR standards.

Empower

Provide highly engaging courses paired with actionable and enforced policies. Empower employees to make the right decisions when it comes to handling, storing, and processing the personal data of EU citizens.

Secure

Utilize our robust analytics to ensure employees are completing coursework. Compliance = a more secure environment.

 


 

GDPR Compliance Tips     

  • Give customers an opt out option in regards to their personal data as well as confirming that your business has permission to use their data.
  • EU individuals can request to have their data deleted. Take a proactive approach and go ahead with deleting irrelevant data as it comes in.
  • Have a plan in place to detect, investigate, and report a data breach within 72 hours should it happen.

 


 

GDPR Courses

How to Comply With the GDPR in the US

10 min | The General Data Protection Regulation, or GDPR, contains principles for protecting the privacy of EU citizens’ personal data. Every organization, worldwide, that gathers, stores, or processes this data in any way, must comply with the strong data protections required under the GDPR. Upon completion of this module, learners will be able to recognize situations where the GDPR comes into play and what to do when they encounter data that falls under GDPR regulations in the US.

Introduction and Overview

20 min | This comprehensive course is delivered in a series of short, concise modules targeted to specific areas of the law and targeted to defined roles contained within the GDPR. Participants will learn the fundamentals of the new regulations and the key concepts behind them. By the end of this course series, learners will be able to recognize situations where the GDPR comes into play and what to do when they do encounter data that falls under GDPR regulations.

Key Principles of the GDPR

15 min | Become compliant with GDPR rules and its far-reaching implications. This comprehensive course is delivered in a series of short, concise modules targeted to specific areas of the law and targeted to defined roles contained within the GDPR. Participants will learn the fundamentals of the new regulations and the key concepts behind them. By the end of this course series, learners will be able to recognize situations where the GDPR comes into play and what to do when they do encounter data that falls under GDPR regulations.

GDPR for Data Handlers

8 min | The European Union’s General Data Protection Regulation (GDPR) ushered in sweeping changes to requirements for any organization that collects, maintains, or processes the personal data of individuals residing in the EU. Compliance with the GDPR affects all our organization’s data handling activities, either directly or indirectly, and all staff whose responsibilities include use of PII will be expected to operate in accordance with the regulation’s safeguards. This course will provide employees a general awareness of the GDPR’s requirements and how they affect our day-to-day data processing activities, as well as helping them to recognize potential problems should they arise.

Navigating the GDPR with our US Partners

8 min | The European Union’s General Data Protection Regulation (GDPR) ushered in sweeping changes to requirements for any EU organization that collects, maintains, or processes the personal data of EU citizens, and exchanges of that data with organizations outside the EU will be significantly impacted. Since data transfers with the US represent a major share of these cross-border activities, this course will focus on a comparison of the differences between EU and US privacy laws, as well as exploring avenues by which EU-US information exchanges can be conducted.

Transfers of Data Outside the EU

15 min | This course is one of a multi-part series that covers the fundamentals of the EU’s General Data Protection Regulation, or GDPR, as well as its origins and key concepts. The GDPR contains principles for protecting the privacy of EU citizens’ personal data. Every organization, worldwide, that gathers, stores, or processes this data in any way, must comply with the strong data protections required under the GDPR. In this module, you learn how the GDPR affects our organization when transferring or receiving EU citizens’ private information outside the borders of the UK and EU.


 

Sign Up for News & Announcements