The European Union has introduced important new privacy legislation that will have wide ranging effects on how most organizations will need to handle data related to people. This new legislation called the General Data Protection Regulation (GDPR) focuses primarily on the issue of collection of personal identifiable data (PII) data and goes in effect May 25th, 2018.
The GDPR legislation applies to any organization that collects or processes PII data on EU residents. In today’s global world, any organization, large or small, operating anywhere in the world, could be affected by this regulation if an EU resident chooses to use the service. And the penalties are steep