The EU’s General Data Protection Regulation represents the biggest change to local data protection laws in over twenty years. It’s time for businesses to wake-up and address this new regulation before it’s too late. It is now less than a year until GDPR comes into full effect, forcing all companies operating in Europe to comply with the legislation’s stringent changes. Despite this, research studies have repeatedly shown that companies are either unprepared for the regulatory changes or – worse still – are completely unaware as to what they entail. But companies must get prepared for GDPR and fast, because the pitfalls are huge. Firms face fines of the greater of €20 million or up to four percent of global corporate turnover, and they are also expected to report data breaches within just 72 hours. Furthermore, GDPR gives EU citizens far greater control over who holds their data and where it lives, through requirements such as ‘the right to be forgotten’ and ‘the right to data portability’. In this in-depth whitepaper, industry-leading CISOs and lawyers discuss how businesses must go about achieving GDPR compliance by the regulation’s cut-off date of 25 May 2018 – or face the consequences.