GDPR

Protecting customer data should have always been a priority for companies. With GDPR, they now have a framework for teams across the organization to adopt and protect their customer data, writes Shanthala Balagopal, a product marketing executive at Helpshift.

The European Union’s General Data Protection Regulation could serve as groundwork for future U.S. rules, so analysts suggest credit unions at least begin working toward compliance.

There are forward-looking regulations that govern the landscape of how personal data gets collected, processed, analyzed, stored, retained, monetized, and accessed by any organization that collects data in the EU. Its goal is the protection of individual privacy and will require a multi-year strategy, according to Bassim Alkhafaji, a partner at Andra Capital.

With the acquisition of Confyrm, the bank is among the few players that are putting themselves in position to sell ID authentication services to other businesses.

We need to rethink how we acquire and manage consumer data, and any business using enterprise software needs to be accountable for how information is being processed, transported or shared, writes Chris Wong, CEO of LifeSite.

New European Union privacy rules could serve as a guide for U.S. banks.

The rules that govern data are changing rapidly, creating confusion for the companies that use blockchain to support payments, as well as potential investment opportunities for third parties that can ensure compliance.

New European Union privacy rules could serve as a guide for U.S. banks.

Deadlines imposed by U.S. and EU regulators are giving banks intercontinental whiplash.

It's a race to the finish line that also affects U.S. companies with European customers. In these final moments, every company must at least show good faith in attempting to follow the law and having procedures and technology in place to do so.

Many in Europe and the U.S. view GDPR as Europe's first true data breach protection measure — in part because it requires notification of any breach within 72 hours. But they also see it as a complex and costly race to the May 25 deadline.

Mastercard and IBM have founded a company with a very narrow goal: to help organizations scramble their data to thwart hackers and comply with Europe's General Data Protection Regulation.

In many ways, the goal of the GDPR is to increase difficulty for a hacker, while also flipping the rights of data ownership back to the European consumer. U.S. companies that serve European consumers are obligated to follow the regulations.

PCI compliance won't be enough to meet the strict requirements of the General Data Protection Regulation, which takes hold May 25 in Europe.