The European General Data Protection Regulation (GDPR)

Document created by devan05 Employee on Apr 6, 2017
Version 1Show Document
  • View in full screen mode

Are you ready for the General Data Protection Regulation?

The European Commission put forward its EU Data Protection Reform in January 2012 to make Europe fit for the digital age. More than 90% of Europeans say they want the same data protection rights across the EU – and regardless of where their data is processed.


What is the General Data Protection Regulation?

The European General Data Protection Regulation (GDPR) is a new regulation in Europe that will come into force on May 25th, 2018. Its objective is to further strengthen data protection for individuals and to harmonize the law in this area across the European Union. Enforcement of the directive will be backed by heavy fines.


What is personal data?

‘Personal data’ relate to any personal information which can be used to identify you, directly or indirectly, such as your name, your telephone number, your email address, your place and date of birth, etc.


What do you need to to?

Organizations that deal with data on a Global scale will need to review their data lifecycle and put in place processes and technology to be compliant.


What are a data controller’s obligations?

The obligations of a data controller (i.e. an entity either in the public or private sector which is responsible for processing personal data, for example, a medical practitioner, a company, a sports club, public administration, etc.) are the following:


  • To ensure that your rights are observed (i.e. inform you, give access to your data);
  • To ensure that data are collected only for specified, explicit and legitimate purposes, that they are kept accurate and up to date and for no longer than is necessary;
  • To ensure that the criteria for making data-processing legitimate are observed, for example, when you give your consent, sign a contract, or have legal obligations, etc.;
  • Confidentiality of the processing;
  • Security of the processing;
  • Notification to the data protection authority, in some cases; and
  • To ensure that, when a transfer of data occurs to countries outside the EU, these countries guarantee an adequate level of protection.


For more information on The European General Data Protection Regulation (GDPR) please follow the adjacent link:


CA Solutions:

Adoption of and adherence to GDPR obligations requires a thorough approach. CA can help with a complete set of targeted software solutions.


CA Data Protection:

CA Data Protection can help you meet your GDPR needs as it is designed to reduce data loss and misuse by controlling the information—and access to it—at every point in the system. (Follow the link for more information on CA Data Protection -


Other CA GDPR Options:

Apart from CA Data Protection, CA has other products that may help you fulfill your organizations GDPR requirements.  Please follow the url link for more information

2 people found this helpful