General Data Protection Regulation

General Data Protection Regulation (GDPR) will implement a new legal framework in the European Union (EU) for the protection and distribution of personal data on May 25, 2018. Organizations around the world that serve customers and individuals in the EU will be required to put in place security policies to address different risks and effectively enforce these policies with technical controls or potentially face fines of up to €10 million or more.

Under the GDPR, individuals will have rights including the ability to access their personal data; rectify inaccuracies or omissions; request deletion or removal of data once it is no longer required; restrict the processing of their data; and object to the use of their data.

The biggest concern now for the respondents is the potential fine. Breaches of some provisions could lead to fines of up to 20 million euros or 4% of global annual revenues whichever is greater. For other breaches, the authorities could impose fines on companies of up to 10 million euros or 2% of global annual revenues whichever is greater.


Fixnix-GRC Solutions can facilitate GDPR readiness by providing a foundation of confidentiality, integrity and availability across all types of on-premises, hybrid cloud and public cloud IT environments.