Conclusion: The General Data Protection Regulation (GDPR) legislation being introduced by the European Union (EU) in May has ramifications to organisations worldwide.

Australian organisations that have already invested in ensuring that they comply with the Australian Privacy Act 1988, and have a robust privacy management framework in place, may find that they already comply with aspects of the EU’s GDPR. However, GDPR does have more stringent requirements including requirements that are not within the Australian requirements, so effort and investment will be required by organisations that need to comply with GDPR.

When considering an organisation’s position and defensibility in terms of whether they complied or not, organisations will need to develop an understanding of the specific requirements, and how exactly they have implemented “technical and organisational measures to show that they have considered and integrated data protection into their processing activities”¹.

Existing Client Login

Please complete all required fields!

This advisory paper is only available to IBRS advisory clients. To find out more about becoming an IBRS advisory client complete the attached form and we will be in touch.

Name^*

Please let us know your name.

Email^*

Please let us know your email address.

Number^*

Please enter a valid phone number

Subscribe to IBRS InTouch for weekly updates outlining content and insights from our advisors Invalid Input

^*

I consent to IBRS collecting my details through this form.

Invalid Input

Invalid Input

Read more ...