[Sponsor] 1Password: You Can’t Ignore GDPR Anymore

The EU's General Data Protection Regulation (GDPR) was enacted in 2018, but its enforcement was initially slow. However, in recent years, EU member nations have started taking action against data controllers of all sizes, from large companies like Amazon to small businesses and even individuals. Factors contributing to the increased enforcement include the EU cracking down on companies with bogus "headquarters" in countries with friendly regulators and the public's growing dissatisfaction with tech companies following numerous data breach stories. For IT and security professionals, adopting a policy of data minimization and securing the data collected are key priorities. This involves protecting against common breach culprits like compromised passwords and monitoring data movement to prevent it from disappearing onto unmanaged devices. The UK Information Commissioner emphasizes that the biggest cyber risk businesses face is complacency within their own companies, rather than external hackers. It is now crucial for businesses to get serious about GDPR compliance to avoid fines and reputational damage.