Security Congress Abstract
GDPR has given headaches to businesses around the world, despite a two-year lead up to its implementation. Looking backwards, it is easy to notice that many companies are struggling with obstacles coming "from within" their environments, causing data breaches that are left undiscovered or discovered late, being unable to fulfill data subject rights and adequately protect data, being unsure how to deal with data erasure or access requests and having complaints logged with the data protection authorities. Higher awareness of data subjects makes it even more complicated to deal with them "easily." Why do companies struggle? Is it due to "technical difficulties" in the GDPR application, lack of management support or the wrong interpretation of legal requirements? Let's discuss everything in this session based on recent use cases.