The most important thing to remember about the GDPR is that it’s not a one-off compliance effort like the rush to fix the Y2K Millennium Bug. On the contrary, it’s a continuous process that will need to be constantly evaluated and evolved over time. That’s good news because this will likely result in a de facto grace period early-on in the GDPR’s lifetime as regulators and organisations feel their way around the new law.
To succeed long term, boards must view the regulation as a business, rather than a security, risk. Strategy must be formulated with stakeholders from across the organisation — including IT, legal, compliance and the data owners themselves. The bottom line is that the GDPR is here to stay, so firms must get on board, embrace the change and learn how to innovate, grow and compete amid a new regulatory landscape.
Original Story Source: Information Age