Current European Union (EU) Data Protection rules date back to 1995. The EU was keen to establish a new set of rules reflecting the current reality of data usage and in response to calls that existing laws were out of date. In January 2012, the European Commission made a proposal for a single harmonized General Data Protection Regulation (GDPR) across the EU.

After four years of intense negotiations, a political agreement on the GDPR was finally reached in December 2015. This was formally adopted into European law in May 2016 and companies now have two years to implement and conform to the new regulation, which will enter into force in 2018.

The evolving regulatory environment on cybersecurity and data protection offers both possibilities and challenges for IBM and its clients. The challenges range from governance to securing application and infrastructure.

IBM has extensive experience helping clients navigate regulatory environments in Europe – and around the world. We have done this successfully through consulting services and solutions and through our delivery of cloud and cognitive solutions. This paper reflects IBM’s general view of Europe’s new regulatory landscape. It is not, however, intended to be exhaustive and does not describe every procedure and technical detail that could be required.

The key to establishing preparedness in this new era lies in choosing the right partners for your organization, and being able to deploy appropriate security and data protection controls and procedures in a way that can be rapidly and readily demonstrated. IBM understands this is not just a technical challenge, but a challenge of governance and compliance, applications and infrastructure and assurance.

 

 

The paper explores:

  • The implications of the new GDPR
  • The new rights of data subjects
  • The new responsibilities for data controllers and processors
  • The transfer of personal data
  • How IBM can help
  • The new Network and Information Security (NIS) Directive

Watch the on-demand webinar: New Data Protection Law GDPR: Reality Bites!

More from Data Protection

Cost of a data breach: Cost savings with law enforcement involvement

3 min read - For those working in the information security and cybersecurity industries, the technical impacts of a data breach are generally understood. But for those outside of these technical functions, such as executives, operators and business support functions, “explaining” the real impact of a breach can be difficult. Therefore, explaining impacts in terms of quantifiable financial figures and other simple metrics creates a relatively level playing field for most stakeholders, including law enforcement.IBM’s 2024 Cost of a Data Breach (“CODB”) Report helps…

Cost of data breaches: The business case for security AI and automation

3 min read - As Yogi Berra said, “It’s déjà vu all over again.” If the idea of the global average costs of data breaches rising year over year feels like more of the same, that's because it is. Data protection solutions get better, but so do threat actors. The other broken record is the underuse or misuse of technologies that can help safeguard data, such as artificial intelligence and automation.IBM’s 2024 Cost of a Data Breach (CODB) Report studied 604 organizations across 17…

Cost of a data breach: The industrial sector

2 min read - Industrial organizations recently received a report card on their performance regarding data breach costs. And there’s plenty of room for improvement.According to the 2024 IBM Cost of a Data Breach (CODB) report, the average total cost of a data breach in the industrial sector was $5.56 million. This reflects an 18% increase for the sector compared to 2023.These figures place the industrial sector in third place for breach costs among the 17 industries studied. On average, data breaches cost industrial…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today