David Young, – Lawyers Daily, Feb 20, 2018
(February 20, 2018, 9:03 AM EST) — On May 25, 2018, some Canadian companies will become directly subject to the European Union’s new General Data Protection Regulation (GDPR). Others, part of multinational enterprises, likely will align their privacy compliance frameworks with the new EU norms, even if they are not directly subject to the law.
The GDPR is the successor to the EU’s 1995 Data Protection Directive. While the GDPR will raise the bar for privacy compliance in the EU, its expanded extra-territorial application and significantly higher penalties (up to $30 million or four per cent of annual worldwide revenues) have caught the attention of non-EU companies and their advisers, particularly in Canada and the United States.
David Young Law
Suite 3500, 2 Bloor Street East, Hudson’s Bay Centre,
Toronto ON M4W 1A8