The EU General Data Protection Regulation (GDPR) now applies directly in all EU member states and is enforceable.

The GDPR imposes far-reaching obligations for companies in the EU that collect, use, or otherwise process personal information. While the GDPR is pan-European in scope, individual Member States will be issuing implementation guidelines and in some areas more detailed rules. We are closely monitoring all developments related to local implementation on behalf of our clients and are making them available here so that you can track them as well.

With possible penalties of up to €20 million or 4% of global annual revenue for non-compliance, companies cannot afford to turn a blind eye. Morrison & Foerster’s global Data, Cyber + Privacy team has extensive experience advising companies across industries in all phases of GDPR preparedness. Explore our readiness center as you continue to assess your obligations and chart a roadmap to compliance. We would be delighted to speak with you if we can assist. Our team is ready and willing to help.

Webinar On-Demand

  • Cybersecurity Regulations State of Play: EU vs China

    This on-demand webinar covers the various cybersecurity initiatives underway in the European Union, such as the Cyber Resilience Act, the NIS2 Directive, DORA, and the Cybersecurity Act, and assesses how they match up to what China’s cybersecurity laws have been developing into over the last few years.