Technical recommendations for data management at CEU

From May 25, 2018, organizations with operations inside the EU must follow the General Data Protection Regulations (GDPR) to safeguard how they store and process personal data. GDPR is setting a new baseline for privacy and security. Noncompliance with GDPR can be very costly, it may result in regulatory fines as high as 4% of the global annual turnover or €20 million, whichever is higher. In addition to penalties, organizations can suffer reputational harm from negative publicity about their noncompliance.

The intended purpose of this document to provide a guideline on how data at CEU can and should be stored and shared in order to be compliant with the GDPR.


Technical Recommendations