What is the 'General Data Protection Regulation (GDPR)'
The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union (EU). The GDPR sets out the principles for data management and the rights of the individual, while also imposing fines that can be revenue-based. The General Data Protection Regulation covers all companies that deal with data of EU citizens, so it is a critical regulation for corporate compliance officers at banks, insurers, and other financial companies. GDPR came into effect across the EU on May 25, 2018.
AuditNet® provides links to GDPR resources for the global audit community. In addition AuditNet® has tools for subscribers to help with GDPR compliance and audit. If you have resources you would like to share send an email to info @ auditnet dot org
