Project 2 Cloud computing
cyberspin
GeneralDataProtectionRegulationGDPR.pdf
2/11/2021 General Data Protection Regulation (GDPR)
https://leocontent.umgc.edu/content/umuc/tgs/cca/cca610/2211/learning-topic-list/general-data-protection-regulation--gdpr-.html?o… 1/3
General Data Protection Regulation (GDPR)
cnythzl/Getty Images
General Data Protection Regulation (GDPR) is the European Union's (EU) new data
privacy law, implemented May 25, 2018. These regulations protect personal data (defined
as any information relating to an identified or identifiable person) and ensure individuals'
right to privacy through new data protection, security, and compliance requirements
(AWS, 2018).
The central idea behind this law is to require "privacy by default" with regard to the
collection and handling of all personal data.
The GDPR has six general data protection principles (European Commission, 2018):
1. fairness and lawfulness;
2. purpose limitation;
3. data minimisation;
Learning Topic
2/11/2021 General Data Protection Regulation (GDPR)
https://leocontent.umgc.edu/content/umuc/tgs/cca/cca610/2211/learning-topic-list/general-data-protection-regulation--gdpr-.html?o… 2/3
4. accuracy;
5. storage limitation; and
6. integrity and confidentiality.
Scope
Any organization that holds or uses data on citizens inside the EU are subject to these
regulations, regardless of the physical location of the company itself (Kottasová, 2018).
Cost of Compliance and Sanctions
The International Association of Privacy Professionals (IAPP) estimate that Fortune's
Global 500 companies will spend about $7.8 billion on new technology, lawyers, and
compliance consultants in order to ensure they are compliant with the rules, in addition to
costs associated with updating their products and services to make them GDPR-compliant
(IAPP, 2017)
Companies out of compliance could face fines up to 4 percent of annual global turnover
or about $23 million (Kottasová, 2018).
For more information on GDPR, review the references below.
References
Amazon Web Services (AWS). (2018). General Data Protection Regulation (GDPR) center.
Retrieved from https://aws.amazon.com/compliance/gdpr-center/?
sc_medium=AW_AWNS_FMM_GDPR_nb_041018&trk=70150000000mkld&s_k
wcid=AL!4422!3!265937371174!e!!g!!gdpr&ef_id=WvTFNQAAALLzX2jc:201807
31134307:s
European Commission. (2018). 2018 reform of EU data protection rules. Retrieved from
https://ec.europa.eu/commission/priorities/justice-and-fundamental-rights/data-
protection/2018-reform-eu-data-protection-rules_en
Goddard, M. (2017). The EU General Data Protection Regulation (GDPR): European
regulation that has a global impact. International Journal of Market Research,
59(6), 703–705. doi:10.2501/IJMR-2017-050. Retrieved from
2/11/2021 General Data Protection Regulation (GDPR)
https://leocontent.umgc.edu/content/umuc/tgs/cca/cca610/2211/learning-topic-list/general-data-protection-regulation--gdpr-.html?o… 3/3
http://ezproxy.umgc.edu/login?
url=http://search.ebscohost.com.ezproxy.umgc.edu/login.aspx?
direct=true&db=bth&AN=126375540&site=eds-live&scope=site
International Association of Privacy Professionals (IAPP). (2017). Global 500 companies to
spend $7.8B on GDPR compliance.Retrieved from
https://iapp.org/news/a/survey-fortune-500-companies-to-spend-7-8b-on-gdpr-
compliance/#
Kottasová, I. (2018, May 21). What is GDPR? Everything you need to know about
Europe's new data law. Retrieved from
https://money.cnn.com/2018/05/21/technology/gdpr-explained-europe-
privacy/index.html?iid=EL
Ensuring GDPR Compliance
(/content/umuc/tgs/cca/cca610/2211/learning-resource-
list/ensuring-gdpr-compliance.html?ou=541322)
© 2021 University of Maryland Global Campus
All links to external sites were verified at the time of publication. UMGC is not responsible for the validity or integrity
of information located at external sites.
Resources
