The European Union’s General Data Protection Regulation (GDPR) will come into effect on May 25, 2018 and will apply to all organizations that provide services to residents of the European Union (EU), regardless of whether they are based in, or operating out of, EU territory. These regulations apply to the collection, handling, and storage of personal data from EU citizens.
In the event of a data breach, organizations risk severe penalties for noncompliance with the regulation.
Businesses should have processes and systems in place to not only prevent and detect data breaches but also to identify what data has been compromised, when the data breach occurred, how it happened, and why it happened.
When a breach occurs, an IT organization must quickly (within 72 hours) determine:
- Where the attack came from
- Which users (if any) were involved
- Which internal assets communicated with the malicious activity
- What data was accessed in the attack
- Whether (and how) the attack spread laterally through the network