GDPR AND E-PRIVACY - MITIGATING THE RISKS FOR MNOS
発行: Mobile Market Development Ltd
ページ情報: 英文 34 Pages
The introduction of GDPR and the EU e-privacy regulations on May 25 places much more stringent requirements on organisations to ensure that an EU customer's data is only used for purposes agreed to by that customer and is held securely. This applies to both the organisation providing goods or services to a customer and any others, whether located in the EU or not, that it has contracted to handle that data. The penalties for failing to meet these requirements can be very severe.
Most mobile operators have many millions of customers and hold extensive data on them, including personal and financial information, their contacts and patterns of behaviour, meaning that any breach could affect very large numbers of people. The nature of their operations means that this data is frequently held on a number of different databases, which often include a variety of systems, increasing the risks of a breach and also making them vulnerable to attack by criminal elements.
It is important that MNOs ensure full compliance with the spirit as well as the letter of the GDPR in order to minimise the risk of default and consequent penalties. They also need be sure that they have taken all feasible actions to mitigate the risks involved.
This report looks at the experiences of operators that have suffered a major breach and examples of preparation for GDPR and assesses the likely readiness of the industry. It reviews the approaches being taken by a number of national data protection authorities in order to understand the likelihood of severe penalties being imposed in the early days of the regulations and the types of actions that will mitigate risk and the size of penalties.
Companies : TalkTalk, Orange (Belgium), Telenor, Telia, A1, Wind Tre, CNIL, BfDI, ICO, CPDO, GPDP, AP,
Countries : Global, EU, Austria Belgium, Czech Republic, France, Germany, Ireland, Italy, Netherlands, US, UK, Denmark, Estonia, Hungary,, Malta, Lithuania, Luxembourg, Latvia, Poland, Sweden, Slovenia,