The GDPR applies :
- To all organizations processing personal data of European citizens
- Companies outside the EU processing personal data of European citizens
Your company’s internal (Human Resources, Marketing, IT, etc.) and external (subcontractors) employees must also comply with the GDPR. Indeed, anyone processing personal data must respect the GDPR and therefore be at least aware of it.
It is under the employer or DPO responsibility to create this opportunity to raise awareness of the GDPR for the company’s employees.
What is the final benefit of being in compliance with the GDPR ?
In order to protect your customers and internal data assets, the company needs to maintain its level of GDPR compliance. Indirectly, by carrying out these actions you convey strong signals of professionalism, organization and thus you are generating business.