General Data Protection Regulation (GDPR)

Evolving and expanding data privacy protection through GDPR readiness, implementation and compliance

General Data Protection Regulation (GDPR)

Insights

Services

Professionals

Article

doctor looking at tablet healthcare technoogy

10 reasons internal audit can help manage risk associated with the internet of medical things (IoMT)

Article

Data mapping: building a strong foundation for cybersecurity and data privacy

Article

Data Privacy Day 2022: Resolve to be in front of privacy ... not behind it

Article

New SCCs published for international data transfers under the GDPR

Article

GDPR: three years of setting the standard for data privacy

Webinar

Data privacy reset for 2021: seeing past the headlines

Article

Data security man looking at data analytics screen

The Brexit transition period has ended – now what?

Article

EU data transfers: transitioning to standard contractual clauses in 2021

Article

Strategic planning team works on project in conference room

NIST releases version 1.0 of its privacy framework

Webinar

Operationalizing data privacy: leading practices for regulatory compliance

Case Study

Windows of a building feature this piece of real estate

University gains insight into its GDPR compliance progress through data privacy analysis, establishes peer benchmark

Case Study

Initial GDPR readiness assessment leads to comprehensive, strategic privacy advisory of growing technology company

Article

Lawyer reviewing California's privacy law

Countdown to 2020 – What you need to know about California’s privacy law

Resource

Sun peeking through the clouds over vast landscape

Growing technology company enhances privacy posture through GDPR readiness assessment prior to international expansion

In the News

Investment in Cybersecurity is Key to Minimizing Risk and Gaining a Competitive Edge

Webinar

Understanding privacy regulations and compliance

Press Release

Baker Tilly Poll Shows GDPR Compliance and Privacy Governance Still a Challenge for Most Organizations

Webinar

The rise of privacy: a risk-based approach to privacy oversight, compliance and management

Article

Putting a price on privacy risk

HITRUST CSF® Assessment Services

typing a soc compliance report on computer

System & Organization Controls (SOC) Reporting

internal audit services office building and a star-filled sky

Mike Vanderbilt

Director

PMP, CIPP/E

Baker Tilly’s GDPR professionals help clients navigate the impacts of the data privacy regulation, its requirements, tips for assessing GDPR readiness and preparing for compliance.

Evolving and expanding data privacy protection through GDPR readiness, implementation and compliance.

In response to the need for greater data privacy and protection, the European Union (EU) enacted the General Data Protection Regulation (GDPR) to govern the collection, processing, use, and storage of personal data originating in the EU whether it be from an EU citizen, resident, or visitor. The regulation represents the most significant data privacy and protection regulation ever enacted. GDPR applies to all organizations processing and holding the personal data of these individuals, regardless of the organization’s location.

Regulation impact

The GDPR became effective May 25, 2018. Penalties for noncompliance are significant. Organizations in breach of GDPR can be fined up to 4 percent of annual global revenue or €20 million (whichever is greater).