GDPR is coming, but nobody knows how it will be enforced· 5 October 2017
The deadline for Europe’s sweeping reforms to data protection is looming, but many marketers are still none the wiser on how those rules will be enforced. The General Data Protection Regulation may be a universal law for the European Union, but that doesn’t mean it will be applied equally. After all, 28 different countries will handle enforcement. That means Germany, for example, is expected to be tougher on enforcement of GDPR than elsewhere on the continent given data protection is conducted at a state level. Conversely, the U.K. has traditionally been the member state to push back against any overtly data-privacy regime that could impede global trade.

GDPR is coming, and many U.S. ad tech firms aren't ready·14 September 2017
From an American perspective, GDPR is difficult to fully comprehend: sweeping regulations that have 99 articles and 173 recitals. Some are betting that the sheer scope of GDPR means EU regulators will struggle to enforce it. Businesses outside of Europe aren’t necessarily reluctant to adapt for the GDPR. The reasons they’re delaying preparations have more to do with procrastination, not reading the fine print and, most importantly, not fully processing the GDPR’s implications, said Shane Minte, U.S. head of supply at mobile data platform Ogury. “It’s one of those things that, due to the geography, might feel like a distant problem, yet it is going to affect us all,” he said. “Having just a single user in the European Union for which [a company is] not GDPR-compliant means 2-4 percent of their global revenues are at risk.”

37 Percent of Global Organizations Unsure if They Need to Comply with GDPR

·14 September 2017
WatchGuard Technologies, a provider of advanced network security solutions, announced the results of a global survey that explores how well organizations understand Europe’s General Data Protection Regulation (GDPR) and their readiness for its fast approaching compliance deadline. The findings indicate widespread confusion about GDPR compliance criteria and an overall lack of preparation. The survey examines the views of more than 1,600 organizations across the globe and was conducted by independent market research firm, Vanson Bourne.

Google Sues to Block EU Antitrust Fine as Travel Probe Could Be on the Agenda - Digital·11 September 2017
Google took its fight over a record European Union antitrust fine to the EU courts, starting a legal challenge that could take years to conclude. The owner of the world’s largest search engine said it filed its appeal on Monday at the EU’s General Court, based in Luxembourg. The tribunal’s press service said Google hadn’t asked the court to suspend an EU order for it to change how it displays shopping-search services before it rules on the challenge.

Common GDPR myths, debunked· 7 September 2017
Noise around the threat the European General Data Protection Regulation poses to marketers is getting louder as the 2018 deadline for enforcement approaches. Naturally, a flurry of “GDPR experts” - some of them helpful, others compounding the confusion - have surfaced over the last year to help businesses navigate the challenges.

How the GDPR will disrupt Google and Facebook· 1 September 2017
Google and Facebook will be unable to use the personal data they hold for advertising purposes without user permission. This is an acute challenge because they cannot use a “service-wide” opt-in for everything. When one uses Google or one willingly discloses personal data. These businesses have the right to process these data to provide their services when one asks them to. However, the application of the GDPR will prevent them from using these personal data for any further purpose unless the user permits. The GDPR applies the principle of “purpose limitation”, under which personal data must only be “collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes”.[2]

Tackling GDPR compliance before time runs out |

McKinsey & Company ·16 August 2017
Europe is on the brink of a sea change in its data-protection laws. In fact, when the General Data Protection Regulation (GDPR) takes effect on May 25, 2018, the effects will reverberate far beyond the continent itself. The GDPR goes further than harmonizing national data-protection laws across the European Union and simplifying compliance; it also expands the reach of EU data-protection regulation and introduces important new requirements. It seeks to ensure that personal data are protected against misuse and theft and to give European Union residents control over how data relating to them are being used. Any entity that is established in the European Union or that processes the personal data of EU residents in order to offer them goods or services or to monitor their behavior--whether as customers, employees, or business partners--will be affected. Any failure to comply with the regulation could incur severe reputational damage as well as financial penalties of up to 4 percent of annual worldwide revenues (see sidebar "The GDPR: Key facts" for a synopsis of the new rules).

GDPR - Four Letters and a Headache

Hotel Speak... Talking Hotels·16 August 2017
Just when we were getting used to the Data Protection Act 1998, along comes its replacement, the General Data Protection Regulation. It is designed to harmonise data privacy laws across Europe, to protect and empower all EU citizens’ data privacy and to reshape the way organisations across the region approach data privacy.

Special Report: What GDPR changes mean and how to stay compliant | · 7 August 2017
The EU's General Data Protection Regulation (GDPR) comes into force in May 2018, drastically changing the rules about how businesses hold and use customer data. We've teamed up with Abta and Travlaw to put together a guide on what the changes mean and the action businesses need to take now to make sure they are compliant. Amie Keeley reports

GDPR: How to create best practice privacy notices·27 July 2017
Here are some best practice examples that appear to comply with the GDPR for privacy notices – how organisations explain at the point of data collection what users can expect will happen to their data. Who has ever read a privacy policy? Truthfully?

GDPR: 10 examples of best practice UX for obtaining marketing consent·19 July 2017
With the General Data Protection Regulation (GDPR) due to come into force in May 2018, there are already lots of resources out there to help guide you towards compliance. However, there are fewer articles that point to companies who are already exhibiting best practice. So, I'm going to attempt to round up examples that already seem to comply with aspects of the GDPR.

GDPR a key challenge for hotels at HITEC 2017·27 June 2017
The General Data Protection Regulation (GDPR) will come into force in May 2018 and require any business that handles the personal data of EU citizens to ensure adequate protection is in place to prevent theft or misuse. However, many organisations remain unaware this new regulation applies globally including those businesses domiciled within the United States and Canada. Furthermore, the additional consequences under GDPR of losing EU personal data can result in a regulatory fine of up to €20 Euros or 4 per cent of global revenue, whichever is larger.


Thank you for subscribing. Your email address has been added to our mailing list.
To subscribe to the GDPR Bytes Newsletter please enter your email address below.
An error occured, please check your input and try again.