Impact of General Data Protection Regulation GDPR on systems & storage
In May 2016, the European Parliament published the General Data Protection Regulation EU 2016/679, which is compulsory in each member state starting 25 May 2018. It replaces the data protection directive 95/46/EC from 1995, and does not require any enabling legislation from national governments. The intention is a stronger data protection for individuals within the European Union, and a unified regulation of the export of personal data outside the EU.
GDPR could be described as anything between a logical evolution and a privacy earthquake. To help reduce speculation, this paper highlights how IT systems capabilities and IT systems software are affected by GDPR when used for processing personal data.