-
- Regulatory Compliance
- End of Support
- Cloud Security
- Ransomware
- Industries
- GDPR Compliance
Are you GDPR compliant?
Get help with state-of-the-art security solutions
What is GDPR compliance?
The European Union’s (EU) General Data Protection Regulation (GDPR) standardizes legislation on data protection across the EU and covers previously unforeseen data usage patterns. GDPR mandates that organizations anywhere in the world processing EU citizen data reassess their data processing controls and put a plan in place to better protect it.
GDPR implications
GDPR is viewed as one of the most aggressive data protection regulations in the world and is designed to consistently protect personal data for EU citizens. The regulation means that any organization interacting with and storing the data of an EU citizen will be subject to fines for noncompliance.
GDPR is global
Just because your organization is based outside of the EU, doesn’t mean you’re off the hook. Any organization that processes EU citizen data, including organizations in the U.S., is subject to GDPR and will still be faced with the applicable penalties.
GDPR fines and penalties
While some organizations are looking at the GDPR as an opportunity to increase the association of their brand with protection of user data, and for overall business growth, there are also potential negative impacts from noncompliance.
The maximum size of the potential fines is 4% of global turnover (revenue/sales) or €20M, whichever is larger. But the GDPR fines aren’t just monetary. Part of the regulation gives the Supervisory Authority the power to impose GDPR penalties so severe that they can effectively prohibit an organization from doing business.
Are you GDPR compliant?
Learn how your peers are handling the new regulation.
GDPR compliance checklist
Five Milestones to GDPR Success*
Milestones
1. Assessment and gap analysis
2. The business case
3. Detailed road map to address gaps and new requirements
4. Incident response testing, auditing, and process evaluation
5. Feedback loop for ongoing compliance and improvement
Actions
- Discover and classify data.
- Map data flow.
- Analyze gaps.
- Quantify resources for hiring/training people.
- Estimate costs for new products and services.
- Account for professional services.
- Deploy security controls.
- Update processes.
- Mitigate third-party risks.
- Review privacy notices and communication.
- Define organizational design.
- Test the incident response plan.
- Audit your audit mechanisms.
- Try out new processes.
- Evaluate all customer-facing materials.
- Prepare for ad hoc audits.
- Establish training and awareness programs.
- Measure.
How Trend Micro is addressing the GDPR
At Trend Micro, we interact with and store customer data from around the world so we leverage this information to provide businesses with the best GDPR solutions available.
We recognize that the GDPR is an essential step in strengthening the individual’s rights in the digital age and have a program in place which incorporates the requirements under the new regulation. Our IT governance provides the structure your organization needs to ensure you’re GDPR-ready.
We have appointed a data protection officer (DPO) for Europe and have a GDPR support team to ensure that our privacy processes and procedures continue to be consistent with data protection regulations.
Learn from our experiences by reading about our path to GDPR compliance and watching our video case study with participants from almost every facet of the organization.
What our customers are doing
GDPR articles and resources
Learn what you need to do now that GDPR is in effect, and get a milestone checklist.
Get expert insight on GDPR, a broad and complicated regulation demanding state-of-the-art security.
As organizations march towards the GDPR deadline, this international survey reveals much confusion and concern amongst responders.
Take action today
Let Trend Micro help you achieve state-of-the-art security for GDPR
Protect your hybrid cloud
Legacy security products can introduce unforeseen vulnerabilities in virtual and cloud-based environments, impede performance, and compromise compliance.
Take action with centralized protection for physical, virtual, cloud, multi-cloud, container, and hybrid environments, powered by XGen™ security.
Protect your network
Required to report all personal data breaches within 72 hours, organizations have to be acutely aware of all activities on their corporate networks while facing sophisticated, hard-to-detect targeted attacks.
Take action with sophisticated detection engines with advanced capabilities and the ability to leverage the latest threat information, powered by XGen™ security.
Protect your users
Attacks on the endpoint are becoming increasingly complex, targeting sensitive data.
Take action with a combination of multiple security techniques combined with the latest threat information, powered by XGen™ security.