What will happen if organizations don't comply with GDPR?

What will happen if organizations don't comply with GDPR?

Organizations can be fined upto 4% of their annual global turnover, or 20 million euros (whichever is higher), for the most serious data breaches or infringements, including not having sufficient customer consent to process data or violating the core of Privacy by Design concepts.
They could be fined 2% of their annual global turnover, or 10 million euros (whichever is higher), for not having their records in order, not notifying the supervisory authority and customer about a breach, or not properly conducting an LIA.

    • Related Articles

    • My business isn't based in the EU. I don't have customers from the EU either. Do I still need to comply with GDPR?

      GDPR is not mandatory if you neither have a business in the EU nor deal with EU residents. However, if you want to ensure better security and privacy of customers' data, it is recommended to have GDPR compliance turned on. You can do this by clicking ...

    • What is GDPR, and how will it impact organizations?

      The General Data Protection Regulation (or GDPR) is a new regulation  developed by the European Union (EU) which involves the protection and free movement of personal data and the rights of individuals, including children. It is a  set of rules which ...

    • GDPR and Zoho CRM - An Introduction

      On this page, we'll be taking a look at what the new rules in GDPR are and how Zoho CRM can help you comply with them. We'll also help you understand how to protect your customers’ data. General Data Protection Regulation (GDPR) is a new set of rules ...

    • What will happen to my existing data in Zoho CRM after GDPR takes effect?

      After GDPR takes effect on May 25, all existing records in your Zoho CRM account will need to be marked under the appropriate lawful processing basis. You can do this through: The Overview Page List View of the relevant module Individual records

    • Who will GDPR apply to?

      GDPR will apply to companies located in the EU, as well as companies who do business with residents of the EU, irrespective of the company's location.