{"id":1558,"date":"2019-07-15T11:00:41","date_gmt":"2019-07-15T11:00:41","guid":{"rendered":"https:\/\/cortadoblog1.wpengine.com\/gdpr-compliance-checklist-these-two-fines-show-why-its-time-to-act-now\/"},"modified":"2024-01-11T11:24:05","modified_gmt":"2024-01-11T11:24:05","slug":"gdpr-compliance-checklist-these-two-fines-show-why-its-time-to-act-now","status":"publish","type":"post","link":"https:\/\/blog.cortado.com\/en\/gdpr-compliance-checklist-these-two-fines-show-why-its-time-to-act-now\/","title":{"rendered":"GDPR Compliance Checklist: Two Fines and Why It\u2019s Time to Act"},"content":{"rendered":"\n

Has your company established GDPR compliance? Here’s what you need to do to protect your organization from a GDPR penalty. <\/p>\n\n\n\n

\"Rethink
Rethink Security: Has your company established GDPR compliance?<\/figcaption><\/figure>\n\n\n\n

GDPR Making the Headlines Again<\/h2>\n\n\n\n

Most businesses will be aware of the General Data Protection Regulation (GDPR) by now \u2013 the regulation by the European Union came into effect in 2018.<\/p>\n\n\n\n

In this respect, it is nothing especially new for businesses. And because the changes were initially so groundbreaking, a lot of people doubted whether it would actually ever lead to real enforcement. <\/p>\n\n\n\n

Some businesses therefore have not established GDPR compliance and carry on mishandling personal data as before. <\/p>\n\n\n\n

Why It’s Time to Act<\/h2>\n\n\n\n

However, this month there were two important reminders that data protection regulation is not going away and companies that fail to rethink their security measures are liable for huge GDPR fines. <\/p>\n\n\n\n

The ICO \u2013 the UK\u2019s independent authority that protects data privacy for individuals \u2013 imposed two hefty GDPR penalties on British Airways and Marriott International<\/strong>, the well-known hotel chain. Because both suffered a data protection breach at the end of last year, the ICO intends to fine British Airways \u20ac204.5M and Marriott International \u20ac110.4M. <\/p>\n\n\n\n

Obviously it is a complicated area, but these fines show that GDPR compliance in the UK and Europe is something that, if ignored, can lead to crippling financial repercussions. <\/p>\n\n\n\n

GDPR Compliance Checklist<\/h2>\n\n\n\n

In order to establish GDPR compliance, and to meet the \u2018appropriate technical and organizational measures\u2019 as stipulated in Article 5 of the GDPR, your business or organization will have to rethink existing security procedures and evaluate the security infrastructure.<\/p>\n\n\n\n

Most checklists online contain similar recommendations. Here is a short selection of the key points you will find on almost every GDPR compliance checklist, with one important addition:<\/p>\n\n\n\n