Photo of Wilko van Weert

Wilko van Weert focuses his practice on EU competition law. He has provided first-class advocacy to corporate clients involved in high-profile international cartel investigations. He has delivered convincing cartel defense analysis and persuasive and vigorous representation of clients' interests before the European Union's enforcement agencies and judiciary. Read Wilko van Weert's full bio.

Enforceable in all EU member states on 25 May 2018, the General Data Privacy Regulation will require action by organisations both inside and outside the European Union to ensure compliance with this far-reaching privacy legal framework. Compliance is even more urgent given that the GDPR provides for large penalties in cases of infringement. As some entities are not yet aware of the extent to which GDPR may be applicable to them, the GDPR expressly applies to organisations established outside the European Union that offer paid or free goods or services to EU data subjects or monitor EU data subjects’ behaviour.

Within this article, we review steps for a risk based, prioritization approach to GDPR compliance and how companies can adjust their policies and practices on a pragmatic basis to help ensure compliance.

Continue reading.