As of May 25, 2018, the new European data protection law goes into effect. The General Data Protection Regulation (GDPR), is known to us as the General Data Protection Regulation (AVG). The AVG aims to protect personally identifiable information from misuse.

This means that an organization meets certain benchmarks and is required to have sound policies to protect the privacy of personal data.

Most people then think of protecting against hackers. While that is also a component, it means much more. Internal procedures are much more important than just having technical security in order.

In particular, it involves raising awareness, comprehensively defining procedures within your organization and, of course, strictly adhering to them. Deficiencies can result in fines of up to many millions of Euros.

If you search on GDPR you will find numerous pages on the subject. We recommend starting at the website of the Personal Data Authority (AP).. There are also many websites of legal experts, especially to advise you on this new legislation.