GDPR is coming.
Chances are that you may have heard of it in the context of a mind-blowing €20,000,000 fine if you are found to be non-compliant.
From my research, I can see that there is a lot of fear-mongering on the topic. Lawyers and consultants are using it as a cash grab to sell expensive kits and training.
Quick summary: GDPR, which stands for the General Data Protection Regulation, is a new law that becomes enforceable on 25 May 2018. It is designed to promote greater transparency, enhanced rights for individuals and increased accountability of organizations. While it applies specifically to EU citizens, in practice it affects every website in the world because EU citizens can visit your little corner of the web wherever they are.
Thankfully, my research also found some plain-speaking and straight-shooting resources to explain what GDPR is and how to get compliant. This article aims to outline what I’ve learnt and share these resources with you.