On the 25th May 2018 the new General Data Protection Regulations (GDPR) came in to force and there still is a fair amount of confusion about just what exactly must be done to become compliant. Additionally, in the UK the Data Protection Act 2018 will be published and will run in parallel with GDPR.
The Network and Information Systems Directive (NIS) came in to force slightly earlier in May 2018; businesses providing essential services within the energy, transport and health sectors will need to comply with NIS.
Also, 2019 will see the arrival of the overdue ePrivacy Regulation. The ePrivacy Regulation will overlap with, and carry more importance than, GDPR. Marketing preferences will be heavily regulated yet again and if your GDPR privacy policies are not compliant with ePrivacy then you may find you are having to re-permission subscribers once again.
If your business accepts credit card payments or stores credit card information then you must be PCI DSS compliant too. These are just some of the regulations that todays businesses have to comply with, there are even more regulations and directives to adhere to if you operate internationally. We can advise on, document and implement what your business needs to be compliant.