GDPR (General Data Protection Regulation)

The General Data Protection Regulation is a European Union regulation governing the collection, storage, and processing of personal data of EU residents. Under GDPR, organizations are responsible for ensuring that their processors (vendors) handle personal data lawfully. Third-party data breaches can trigger GDPR liability for the first party. GDPR compliance mapping is one of the frameworks supported in Black Kite's Compliance Rating.