In less than four months, the European Union data regulator will begin enforcing the EU General Data Protection Regulation (GDPR) to strengthen the security and protection of EU residents’ personal data. Companies that don’t comply with the GDPR not only risk losing their customers’ trust, but they could also face fines of €20 million or 4 percent of global annual revenue.
Like many regulations, the GDPR is not an easy to understand or practical manual for how brands should go about protecting their customers’ data. Therefore, figuring out how to interpret it and making changes across your organization to adhere to the regulation will be an expensive undertaking on its own. The IAPP and EY predict that Fortune’s Global 500 companies will spend a combined $7.8 billion working to achieve GDPR compliance.