Internal auditors around the world are starting to learn the impact of Europe’s data protection regulation on their organizations and their role in compliance.
If U.S. businesses believed the broad waters of the Atlantic would save them from the European Union’s new General Data Protection Regulation (GDPR), that illusion was dispelled on Jan. 21. That was the day on which the French privacy regulator Commission Nationale de l’informatique et des Libertés (CNIL) fined Google about €50 million ($57 million) “for lack of transparency, inadequate information, and lack of valid consent regarding the [sic] ads personalization.”
