Looking for a first-class business consultant?

GDPR coming into force in May 2018and organizations need to act now

The volume of people, process and technology change required by the 25 May 2018 deadline of the GDPR should not be Underestimated

Many organizations are compliant, on paper, with existing legislation, but are yet to face the challenge of implementing the requirements through the entire personal data lifecycle

As business models have been digitized, the volume of data held by organizations has increased significantly, resulting in organizations not understanding how much PI they hold, why they retain it and how it is being used

Want more insights about EY Romania GDPR Services? Check out our White paper!

EU regulators seek to mandate accountability

In the race to compete in today’s digital world, organizations are using social, mobile, big data and analytics, and the Internet of Things (IoT) to gather as much information on their customers as possible, while simultaneously trying to do everything possible to protect their organizations from cyber attacks that come from the outside and within. In this environment, privacy protection can become an afterthought, bolted on to information security programs in an ad hoc manner. Or worse case, organizations haven’t thought about privacy protection at all.

 

For years, regulators and privacy commissions around the world have attempted to legislate privacy protection and develop privacy standards, such as Privacy by Design (PbD) for organizations to adhere and adopt.

 

However, even as regulators pushed accountability, many organizations saw it as more voluntary than mandatory. They were content to address the letter of the law outlined in the legislation as opposed to its spirit — to meet minimal compliance obligations without taking responsibility for their role in protecting their customers’ or employees’ information.

 

With the introduction of the European Union’s General Data Protection Regulation (GDPR), and the implications for organizations across the globe, the days of organizations leaving the responsibility for privacy protection to someone else is about to end. The EU’s GDPR puts the onus of privacy protection where it should be — in the hands of the entities collecting, storing, analyzing and managing personally identifiable information.

EY Advisory Key Advantages

Why EYLeader in Cybersecurity and Data Protection Services (1/2)

Forrester named EY a leader in Information Security Consulting Source: The Forrester Wave™: Information Security Consulting Services, Q1 2016, Forrester Research, Inc, January 29, 2016,

Data or information in this proposal that is attributable to Forrester Research, Inc. (“Forrester”) represents Ernst & Young’s interpretation of Forrester research, opinion or viewpoints published as part of a syndicated subscription service by Forrester, and have not been reviewed by Forrester. Such data or information speaks as of its original publication date as opposed to the date of this proposal. Any Forrester Wave graphic used in this proposal is copyrighted by Forrester. Forrester and Forrester Wave are trademarks of Forrester Research, Inc. The Forrester Wave is a graphical representation of Forrester’s call on a market and is plotted using a detailed spreadsheet with exposed scores, weightings, and comments. Forrester does not endorse any vendor, product, or service depicted in the Forrester Wave or in any data or information presented herein. Information is based on best available resources. Opinions reflect judgment at the time and are subject to change.

Gartner, Inc. has ranked EY second in worldwide market-share in the information security consulting market, based on total revenue for 2015

Source: Gartner Market Share Analysis: Security Consulting Services, Worldwide, 2015, 22 April 2016

All statements in this report attributable to Gartner represent EY’s interpretation of data, research opinion or viewpoints published as part of a syndicated subscription service by Gartner, Inc., and have not been reviewed by Gartner. Each Gartner publication speaks as of its original publication date (and not as of the date of this [presentation/report]). The opinions expressed in Gartner publications are not representations of fact, and are subject to change without notice

EY is listed by Forrester Research as a Data Protection Consulting Service Provider globally. EY’s data protection services build prominently on data and organization governance, which allows EY to implement the strategy from the top down, with an emphasis on operations. Also, EY’s legal and auditing expertise enrich the offering, allowing EY to provide a set of services that range from addressing legal obligations to adopting best practices, including third-party monitoring and assessment.

Source: Vendor Landscape: Global Privacy And Data Protection Consulting Services, Forrester Research, Inc, April 6, 2016

EY is listed by Forrester Research as a Data Protection Consulting Service Provider globally. EY’s data protection services build prominently on data and organization governance, which allows EY to implement the strategy from the top down, with an emphasis on operations. Also, EY’s legal and auditing expertise enrich the offering, allowing EY to provide a set of services that range from addressing legal obligations to adopting best practices, including third-party monitoring and assessment.

Source: Vendor Landscape: Global Privacy And Data Protection Consulting Services, Forrester Research, Inc, April 6, 2016

Looking for a first-class business consultant?