If You Think You're Compliant, Check Again
You might think you've closed all the holes, but don't be so sure. According to a recent report by Veritas, although 31% of companies surveyed believe they are already compliant with GDPR, only 2% actually are.
The first place to start, of course, is to find out if GDPR even applies to you. As ESET senior security researcher Stephen Cobb once explained in a blog: "Your firm probably needs to comply with GDPR if: you monitor the behavior of data subjects who are located within the EU; you're based outside the EU but provide services or goods to the EU (including free services); or, you have an 'establishment' in the EU, regardless of where you process personal data (e.g. cloud-based processing performed outside of the EU for an EU-based company is subject to the GDPR)."
(Image by Gwoeii, via Shutterstock)