
The Next Frontier: From Communications Service Provider to Digital Service Provider
An exclusive report on how Europe's telcos use digital transformation ...
An exclusive report on how Europe's telcos use digital transformation ...
The second edition of the THINGUIDE has undergone an update ...
When Shell Fleet Solutions wanted to launch an innovative and ...
CGI has over 40 years’ experience providing secure, mission critical ...
An exclusive report on how Europe's telcos use digital transformation ...
Domestic abuse is a prevalent, high-impact crime with widespread and ...
This video demonstrates how we partner with clients to enable ...
Two new pieces of European legislation/regulation were agreed in December 2015.
I read a recent article in the FT, Network and Information Security Directive (NISD), also known as the Cyber Security Directive, was agreed on the 8th December, followed a week later by the General Data Protection Regulation (GDPR), agreed on the 15th December.
Both pieces have been in preparation for several years, with the last few months taken up by the so-called “trilogue” where the European Commission, Parliament and Council work to agree a mutually acceptable text. With the texts agreed in December, both now go ahead to the final law-making stage.
GDPR is a regulation and applies to all 28 European states and is designed to harmonise the various data protection laws already in place.
NISD being a directive will have to be passed into local law, adding a further stage to the process. Both GDPR and NISD are expected to come into force in early 2016 but there will be a two year period during which organisations will be allowed to prepare for the new laws.
First, I consider the GDPR, and its main implications for business. My next blog will focus on the implications for NISD.
GDPR represents a profound reform of data protection law in Europe, shifting the balance of power towards the citizen to whom the personal data belongs, away from organisations that collect, analyse and use such data. Building on the long standing 1995 Data Protection directive, it established one set of data protection law across all 28 European states (although it should be noted that some states already have data protection laws that are more onerous, in some areas, than GDPR, making for rapid adoption in these countries).
Key changes that are going to be introduced by the new law are:
Once the final agreed text is published, we will know the impact more fully. The key question in the meantime is do you understand the potential impact of the key changes to GDPR on your business? For more information on what this means for your business, please leave a comment with your thoughts, or get in touch directly.
At CGI, cyber security is part of everything we do. We can be the cyber security partner you can trust. We can provide experts who have the deep, specialist skills you need and who are part of one of the largest teams of cyber ...
Add new comment
Blog moderation guidelines and term of use