The European Union’s (EU) General Data Protection Regulation (GDPR) becomes fully enforceable on May 25, 2018. Many small and medium-sized enterprises (SMEs) in the United States are not aware they will be affected. They do not realize that the deadline is looming. Some have never heard of the GDPR. The GDPR expands the scope of the European Directive that it replaces and introduces new requirements, and financial and operational penalties for non-compliance. SMEs that must comply with the GDPR will benefit from guidance and simple tools, which are free or inexpensive: (1) To conduct an initial GDPR readiness assessment (2) To execute a data mapping exercise (3)To ensure that website cookie and tracking technologies meet the GDPR’s consent and notification guidelines (4) To enable individuals’ access to their data and the processing status and purpose, as well as the ability to “be forgotten”, by having their personal data removed.
All rights reserved. Collection is open for research.
Citation
Hall, Jeffrey,
"The GDPR and US Small and Medium-sized Companies: Simple Tools to Begin the Compliance Process"
(2018).
Master of Science in Cybersecurity.
Brown Digital Repository. Brown University Library.
https://doi.org/10.26300/jmb6-z372
Brown's Master of Science (ScM) in Cybersecurity is a program for professionals designed to cultivate high-demand, industry executives with the unique and critical ability to devise and execute integrated, comprehensive cybersecurity strategies. Students gain immediately applicable knowledge and, through an …