Contact Us Today! 1-844-237-4300

Central Technology Solutions Blog

European Union’s GDPR: One Year Later

European Union’s GDPR: One Year Later

2018 will be remembered as the year where data privacy was altered forever. From Facebook’s many problems to the launch of the European Union’s General Data Protection Regulation, data privacy has never been a bigger issue than it is today. Let’s take a look at how the GDPR has affected the computing world in 2018-19 and how the past year’s events have created new considerations in individual data privacy.

The GDPR

Before the introduction of the GDPR, individual data privacy was largely an individual’s responsibility. To be fair, in non EU-affiliated circles, it largely still is, but the launch of the GDPR brought to light a lot of issues that people have been talking about for some time: mainly the use of their personal information for corporate financial gain. The GDPR was a response to concerns that some organizations were playing fast and loose with individual’s data that included personal information like names, addresses, email addresses, as well as medical and financial information. In profiting off the capture and sales of this information, the largest corporate tech companies created revenue off the backs of people, creating situations that were simply unfair to consumers and users of these services.

For years leading up to the ratification of the GDPR, EU member states had been legislating their own data protection laws. This trend has been roundly rejected in the United States, but with the implementation of the GDPR, corporations that see themselves as members of the global economy had strict new guidelines to meet in order to be able to use individuals’ data in the same manner as it had been. The GDPR was an amalgamation of these laws and firmly required all businesses to report certain types of personal data breaches within 72 hours to a supervisory authority mandated by EU member nations.

Not only did it give the consumer a voice in the ongoing data collection and distribution scheme, it made businesses cognizant just how important their data management is for the people they depend on. Before the GDPR was in the news, not many organizations were thinking about how a failure to protect customer, staff, and vendor information could negatively affect anyone but themselves. This has led to a wholesale change in the way businesses view data management, the training of their staff, and security investments as a whole.

One Year In

Now that the GDPR has been in place for a year, the results have been mixed. Over 59,000 personal data breaches have been identified by companies that have resulted in notifying regulators. Since sanctions for failing to comply with GDPR mandates carry fines up to €20 million, or up to 4 percent of total revenue from the previous year (whichever is larger), you are seeing a more targeted and strategic approach to keeping data secure, and reporting it quickly when a data breach does happen. To take a look at the results the GDPR had in its first eight months, download the DLA Piper GDPR data breach survey, here.

The takeaway is twofold. Firstly, the GDPR has resulted in a major improvement in data breach reporting speed. Since the mandate gives companies up to 72 hours to notify breached parties, it sets a strict deadline. You likely won’t see situations like the Yahoo! breach where they sat on the information for a year before letting anyone that was affected know they had been breached. The GDPR has also resulted in nearly doubling the amount of reported incidents, not an insignificant number.

On the other hand, fines adding up to €55,955,871 have been levied against the companies responsible for the 59,000 reported incidents, a modest amount for the first year when you consider that about 90 percent of that sum was a single fine levied against U.S. tech giant Google. A French GDPR regulator suggested that this be marked down to more of a transition year than some type of long-term ineffectiveness of the law. It remains to be seen just how effective the law with be if regulators aren’t actively enforcing it.

Effects Abroad

Many U.S. companies do business in mainland Europe and fall under the GDPR regulator's jurisdiction, but domestically, there has been a major change in the way data privacy is viewed. Over the past year, a lot has happened in the U.S. on the individual data privacy front. Not only has the GDPR lit the fire of legislators, it has major tech firm CEOs, such as Apple’s Tim Cook, calling individual data privacy a “fundamental human right”.

While Mr. Cook seems to be in the minority of American tech company leaders (as can be seen by the €50 million GDPR Google fine), it is a step in the right direction. The state of California, not long after the GDPR went into effect, passed its own sweeping (and some would say hastily thrown together) data privacy law, the California Consumer Privacy Act, to protect the residents of the Golden State. Colorado, Massachusetts, and Ohio followed suit with privacy laws shortly after California’s CPA was ratified.

This is good news for individual privacy in the U.S. It’s a far cry from only a few short years ago that resulted in some pretty damning situations for online consumers. Federal lawmakers have balked at making waves of their own in regards to data privacy, but if history is any indication, when states begin passing laws that are outside the norm, the U.S. Congress typically acts to fill the breach.

If you would like more information about the GDPR, subscribe to our blog, or call one of our knowledgeable IT professionals at 1-844-237-4300.

You Can Benefit from Productivity Consultations
Tip of the Week: Keyboard Shortcuts for Slack
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Sunday, September 22 2019

Captcha Image

Join our mailing list!

  • Company Name *
  • First Name *
  • Last Name *

      Mobile? Grab this Article!

      QR-Code dieser Seite

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Productivity Hosted Solutions IT Services Email Privacy Network Security Malware Internet Data Hackers Software Data Backup Outsourced IT Productivity Managed IT Services Computer Innovation Microsoft Business IT Support Data Recovery IT Support Hardware Ransomware Mobile Devices Tech Term Efficiency User Tips Google Backup Cloud Computing Small Business Upgrade Internet of Things Business Continuity Managed Service Provider Windows 10 Managed IT Services Collaboration Paperless Office Communication Business Management Remote Monitoring Phishing Smartphone Android Disaster Recovery VoIP Smartphones Managed IT Encryption Artificial Intelligence Social Media Save Money Windows 10 Data Management Windows Workplace Tips communications Browser Server Cybersecurity Facebook Office 365 Saving Money Help Desk Risk Management Mobile Device BYOD Managed Service Automation Mobile Device Management Holiday Wi-Fi Document Management Quick Tips Passwords BDR App Microsoft Office Network Password Recovery Analytics Virtualization Chrome Applications Laptops Firewall Bandwidth Government Unified Threat Management Healthcare Employer-Employee Relationship Robot Compliance Apps Bring Your Own Device Gmail Going Green Training Business Technology Vendor Management Wireless File Sharing Big Data Processor IT Management Avoiding Downtime Tip of the week Scam Hosted Solution Website Project Management Antivirus Money Infrastructure Miscellaneous SaaS Data storage Telephone Systems Content Filtering Vulnerability Blockchain Information Printing Computers Mobility Operating System Storage Windows 7 Tablet Remote Computing Users RMM Unified Communications Files Settings Downtime Customer Service Apple Two-factor Authentication Politics Router Social Work/Life Balance VPN Virtual Reality Customer Relationship Management Computing Data loss Data Security Regulations Office IT Service Access Control Information Technology Electronic Medical Records Gadgets Machine Learning Alert Mobile Security Mouse Employees Consultation Outlook Monitoring Uninterrupted Power Supply Company Culture Professional Services Recycling Google Drive How To Samsung Word Spam YouTube Business Growth Redundancy Chromebook WiFi Dark Web Flexibility Private Cloud Proactive Software as a Service Tech Support The Internet of Things Mobile Computing Hacker Administration Management Education Smart Technology Digital Payment Remote Monitoring and Management Upgrades LiFi Maintenance Patch Management Websites Identity Theft Wireless Technology Legal Networking Twitter Net Neutrality Current Events IT solutions Licensing Remote Workers Virtual Private Network Display End of Support Health Network Management Internet Exlporer HIPAA Budget Assessment Sports IoT Cooperation How To Monitors Bitcoin Server Management Cache Electronic Health Records VoIP Sponsor OneDrive Specifications Test Touchscreen Techology Buisness Windows Server Legislation IT Technicians GPS High-Speed Internet Lenovo Social Engineering USB Permissions Nanotechnology Star Wars Managed Services SharePoint Staff Conferencing Address Wireless Internet Break Fix Social Networking Windows 8 Save Time Asset Tracking Statistics Mobile Data Cyberattacks Digital Obstacle Manufacturing Black Friday Roanoke — Central Technology Solutions Supercomputer Identities MSP Disaster Resistance Security Cameras User Management Unified Threat Management Hotspot Crowdsourcing Meetings Search Dark Data Personal Information Transportation Mirgation Tracking Development Zero-Day Threat Superfish Safety Fraud Screen Reader G Suite History Utility Computing Consulting Virtual Assistant Vendor Downloads Augmented Reality Taxes Google Wallet Managing Stress Instant Messaging Employer/Employee Relationships Motherboard Google Maps OneNote Bluetooth eWaste Read Only Spyware Course Hard Disk Drives Cyber Monday technology services provider IT Budget Hard Drives Google Docs Tech Terms Proactive IT Notifications Remote Worker Batteries User Error Language Managed Services Provider Shortcut Migration Cables Backup and Disaster Recovery Black Market Projects Smart Tech Cabling Humor Wasting Time Smart Devices Operations Drones Enterprise Content Management Finance Firefox Writing Emoji Proactive Maintenance Data Warehousing Backups Employee-Employer Relationship Point of Sale Deep Learning Network Congestion Solid State Drives Technology Assurance Group ’s 18 Solid State Drive Theft Heating/Cooling IT Consulting ROI Remote Work Computing Infrastructure Cost Management E-Commerce WannaCry Computer Repair Teamwork Virtual Desktop Technology Tips Chatbots Wires Human Error Time Management Return on Investment Cybercrime Physical Security Database Sensors Multi-Factor Security Wearable Technology Telephony Alt Codes Vulnerabilities Authentication Retail Cortana Database Management Microsoft Excel Modem Sync Connectivity Hacking Alerts Law Enforcement Enterprise Resource Planning Bookmarks Options Distributed Denial of Service Annual Convention Public Cloud Cryptocurrency WPA3 Financial Servers Data Breach 3D Printing Notes File Management Printer Hard Drive Features Shared resources Comparison Identity Botnet Permission Processors Active Directory Travel Office Tips Voice over Internet Protocol Google Calendar Typing Geography Authorization GDPR Cookies Mobile Device Managment Software Tips Hacks Disaster Trending Gadget Best Practice Mobile Favorites Mail Merge Update Marketing 5G Managed IT Service San Diego Automobile Computer Care Fleet Tracking Procurement Technology Laws Unsupported Software Virus PowerPoint Value of Managed Services Regulation Motion Sickness CCTV Administrator Relocation Webcam Hard Disk Drive Students IT Consultant Printers Error Emergency Web Server CrashOverride Payment Cards Cameras