According to a study by Veritas Technologies, just 2 percent of organizations are GDPR compliant today. The enforcement deadline of the EU General Data Protection Regulation looms. There is major emphasis on enforcement as the new regime has increased penalties for breaches, with fines of up to 4 percent of a corporation’s annual global turnover. Financial services will have to take special care to put in place adequate policies, procedures and training to ensure breaches are reported within the 72-hour period. The primary responsibility to report a security breach will be on the data controller.”]
Source: https://www.cuinfosecurity.com/blogs/eu-gdpr-how-for-financial-services-p-2563