The good, the bad, the ugly GDPR The good, the bad, the ugly

Problems with personal data User negligence Vendor’s trying to hide breaches and leaks (Yahoo, Facebook, Google) Governments are collecting huge amounts of data Regulations are written by bureaucrats for bureaucrats As a result regulations does not work

GDPR General Data Protection Regulation Came into force: May 25 2018 Enhanced personal privacy rights; Increased duty for protecting data; Mandatory breach reporting; Significant penalties for non-compliance; Major breaches — up to €20 million or 4% of global annual turnover; Less important breaches — up to €10 million or 2% of global annual turnover;

The good Enterprises have begun to pay more attention to personal data Users have seen first sight of “care” for authorities Breaches are being widely reported and discussed Users begin to understand the risks of sharing personal data

The bad Business has the strictest regulation so far GDPR increases entry levels for new businesses GDPR kills a lot of business opportunities GDPR increases operational costs for industry Users get false feeling of safety

The ugly A lot of GDPR audit vendors, some of which are not professional, because of the lack of written audit procedures GDPR “insurance” Tricks by personal data processors, that are hiding real incentives for data collection and processing Another regulations that will create difficulties for business, not solving the real issues

What to do To comply To review business model To hire good copywriters To hire good lawyers To understand, that lawmakers will always be behind industry and make use of this fact

Thank you!