The dress rehearsals are done. The company has toured off-Broadway. The big curtain is about to rise. There are no more practices.
As it is in the theatre, so is it for the CISO. Planning and testing your data center and cloud for GDPR is over; it’s show time. Companies now need to act as though the General Data Protection Rules are in force. Imagine that EU regulators are looking over your shoulder with a violation book in hand.
Here’s what you need in place now that GDPR is live. Incidentally, GDPR and EU compliance are not necessarily intuitive for the average US corporation.