The GDPR (General Data Protection Regulation)Â sets a new standard for consumer rights regarding their data, but companies will be challenged as they put systems and processes in place to maintain compliance.
Compliance will cause some concerns and new expectations of security teams. For example, the GDPR takes a wide view of what constitutes personal identification information. Companies will need the same level of protection for things like an individual’s IP address or cookie data as they do for name, address and Social Security number.