do you collect or process information about eu citizens?
If so, you need to ensure you are GDPR-compliant...
The General Data Protection Regulation (GDPR) affects organizations worldwide that have customers or employees in the European Union. GDPR compliance has become important for data controllers and data processors due to requirements such as the appointment of a data protection officer (DPO) for the organization; maintaining detailed records of processing, as well as a data inventory/map; conducting data protection impact assessments; and ensuring privacy policies and data processing agreements address the requirements of the regulation.
Penalties for GDPR violations can be up to 4% or annual global turnover or €20 Million (whichever is greater)!
Although many organizations already have some great personal information handling practices in place, the enforcement activities of European data protection authorities demonstrate that it is critical to assess your GDPR compliance position.