Share with your friends

GDPR: Privacy as a way of life

GDPR: Privacy as a way of life

It’s more than just compliance.



Also on

As the 25 May 2018 deadline for the EU General Data Protection Regulation (GDPR) looms ever closer, organisations of all sizes are busy getting their houses in order, in a bid to achieve compliance.

The GDPR affects organisations that deal with consumers and businesses in EU member states, and will transform the way that personal information is collected, stored, used, disclosed and disposed of.'

While meeting regulatory obligations is a must, there is a danger of seeing the GDPR as a one-off, ‘tick the box’ activity, rather than a deliberate move towards a privacy-conscious culture, where transparency, citizens’ rights and accountability become second nature to all employees.

In this brief paper, we discuss five issues for you to consider, as you seek to make privacy an integral part of the way your organisation does business.

  1. Put customers at the heart of your privacy strategy
    Be transparent about the kind of customer information your company holds and how you plan to use it.
  2. Understand that personal data is an asset and a liability
    Personal data can create value for your company but breaches, penalties and loss of customer trust can also turn it into a liability.
  3. Technology alone is not the solution
    Before considering which solutions to invest in, you must first get the basics right – starting with strong privacy governance.
  4. Be prepared for questions
    Avoiding reputational damage is a top priority – ensure that your company is prepared to respond quickly and effectively.
  5. Organisations located outside the EU
    Ensure that every part of the value chain applies the same high standards of privacy – for both customer and employee data.

Connect with us


Want to do business with KPMG?


loading image Request for proposal