The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679)
The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU). It also addresses the export of personal data outside the EU. The primary objectives of the GDPR are to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. When the GDPR takes effect, it will replace the data protection directive (officially Directive 95/46/EC) from 1995. The regulation was adopted on 27 April 2016. It applies from 25 May 2018 after a two-year transition period and, unlike a directive, it does not require any enabling legislation to be passed by national governments.
Why should businesses care about GDPR?
Although this law comes from the EU, it will have a global impact. It will affect any business holding personal data on customers, prospects or employees based within the EU, and such businesses need to be preparing for the change now. If businesses ignore this law, they can be fined up to €20 million or 4% of their global annual turnover.
What is the impact on businesses?
The impact for businesses will undoubtedly be huge. The new rules will require businesses large and small across the globe to transform their policies, structure and personnel to ensure compliance and adherence. Data protection and security has to be built into the fabric of organisations rather than farmed out or siloed. So while your security and compliance people should be very concerned with getting the detail right, every other colleague should care about and be aware of the principles, at every level and in every discipline.
Giant fines aside, it’s worth remembering that data protection is more than a compliance issue. Customers care about their privacy and expect businesses to respect that. It’s good business sense to demonstrate that you ‘get’ this cultural aspect, as well as the financial one.
July 4th we have composed a program to enlarge our members’ knowledge on these topics in relation to business travel.
Interested to join us July 4th?
To get acquainted with our association non-direct members, travel managers/travel buyers, can join us for free. Please contact NATM secretariat via firstname.lastname@example.org
NATM (Netherlands Association for Travel Management) | P.O.Box 557 | 2300 AN LEIDEN | +31 (0)71-519 10 19 | email@example.com