USA
Select regional store:

5 years of the GDPR

Reflect – Review – Refresh

The GDPR (General Data Protection Regulation) took effect on May 25, 2018 , updating the EU’s data protection regime for the first time in 20 years. It applies to all organizations that offer goods and services to, or monitor the behavior of, EU residents.

Five years on, it’s a good time for US data processors and controllers that process EU residents’ personal data to reflect on their data protection obligations, review their data processing activities, and refresh their compliance programs.

After all, GDPR compliance is an ongoing process – not something to tick off in 2018 and then set aside.

Biggest GDPR fine to date

The biggest GDPR fine to date is €746 million (about $811 million), issued to Amazon by Luxembourg’s National Data Protection Commission in 2021.

Free PDF download: General Data Protection Regulation (GDPR) – A compliance guide for the US

Download this free green paper to understand the core elements of the GDPR, including:

  • Who must comply with the Regulation
  • The benefits of achieving compliance
  • The Regulation’s core principles and rights
  • How to lawfully transfer personal data between the EU and US
  • Tips on how to write your privacy notice

Download now

A brief history of the GDPR

The EU GDPR has applied to the processing of EU residents’ personal data since May 25, 2018. The Regulation gives individuals (known as data subjects) much greater control over how organizations process, or control the processing of, their personal data.

The benefits of GDPR compliance

There are great advantages to GDPR compliance. The law promotes greater transparency and accountability, and aims to increase public trust by giving individuals more control over their data. By getting data protection right, organizations will enhance their reputation, and build better, trusted relationships with existing and potential customers.

The business benefits of the GDPR include:

  • Building customer trust
  • Enhancing brand image and reputation
  • Improving data governance
  • Strengthening information security
  • Winning new business in the EU

Other GDPR compliance products and services

IT Governance has been at the forefront of GDPR compliance solutions since before the Regulation took effect. Since then:

  • More than 4,000 people have taken our GDPR training courses
  • We’ve delivered GDPR staff awareness training to more than 78,000 people
  • We’ve provided GDPR consultancy to more than 750 organizations
  • Hundreds of organizations have bought our GDPR books, documentation templates, and toolkits If you need to update your GDPR compliance activities to ensure you still meet your obligations, we have everything you need – whatever your resources or expertise.

If you need to update your GDPR compliance activities to ensure you still meet your obligations, we have everything you need – whatever your resources or expertise.

View all our GDPR, data protection, and data privacy products and services

This website uses cookies. View our cookie policy
Save on
Training