The European Union (EU) published the General Data Protection Regulation (GDPR) in May 2016. After a two-year transition period, the GDPR will go into effect on May 25, 2018. The GDPR applies to the processing of personal data of all data subjects, including customers, employees, and prospects. The regulation applies to organizations and data subjects in the European Union. Non-compliance with the GDPR may result in huge fines, which can be the higher of €20M or 4 percent of the organization’s worldwide revenues.
A strong data governance program is a pivotal part of the landscape for GDPR compliance. The traditional data governance disciplines of data ownership, metadata management, data quality management, and model governance also apply to GDPR compliance.