Article: “GDPR is a Good Idea for U.S. Companies, even if it is Not Law”
Author: Cedric Savarese, CEO and Founder of FormAssembly
Website/Publication: Infosecurity Magazine
In an Infosecurity Magazine article, authored by FormAssembly’s CEO and Founder – Cedric Savarese, he covers:
- His perspectives on the GDPR, as a Europe-born CEO, living and working in the U.S.
- Details on whom the GDPR applies to, what it takes to become compliant, and how “Privacy by Design” principles can help.
- His favorite GDPR resources to help you stay up to date on these regulations.
Cedric on data privacy in the U.S.:
“On the dawn of GDPR, and with the spotlight on major data breaches, perhaps the U.S. is ready to take another run at data privacy regulation. We’re at a tipping point where one more privacy scandal could push data privacy into an election-year issue and give momentum to Consumer Privacy Bill of Rights initiatives in Congress.”
Cedric on a why U.S. businesses should care about GDPR:
“Even if the U.S. doesn’t pass legislation protecting consumer data, many companies will still need to ensure GDPR compliance to continue to interact with European users. If you are based in the U.S. but collecting and processing Personal Data of European Union (EU) citizens, then the GDPR may apply to you.”
Cedric on the “Privacy by Design” approach:
“Privacy by Design means that the privacy and protection of personal data is embedded in the design of the data collection process, that it is the default setting, that it minimize the amount of data collected and who it’s shared with, and that it is done in full transparency.”