It has also prompted other authorities around the world to strengthen their own data laws.
The US state of California, home to global tech haven Silicon Valley, last year adopted stringent data legislation largely inspired by the GDPR.
Japan meanwhile has worked with the EU to finalise common rules to offer its citizens an equivalent level of data protection as the GDPR.
And Australia plans to significantly strengthen sanctions against companies that breach data privacy rules, following the EU's lead—the GDPR allows fines of up to four percent of a firm's turnover.
Companies slow to implement
But the transition has not always been easy—companies inside and outside the EU have spent a total of hundreds of millions of euros to comply with the regulations.
Much of this has gone to upgrading how firms handle the vast amounts of data streaming in every day.
"Many companies face a major problem: their IT system was designed around providing services, but not around the data, which is constantly duplicated in all directions, sent to multitudes of providers and suppliers," said Gerome Billois, an expert at the IT service management company Wavestone.
He added that 31 percent of companies fail to implement the GDPR's "right to be forgotten"—which allows people to have their personal data deleted—because "they don't know precisely where the data is".
0 comments:
Post a Comment