The European Union’s General Data Protection Regulation (GPR) is set to begin on May 25, 2018. Most organizations will need to designate a data protection officer (DPO) The Information Security Forum estimates 98 percent of ISF members will be affected by its requirements because they process the personal data of EU residents. Compliance costs and fines can reach up to 20 million or four percent of global annual turnover for the preceding financial year, whichever is the greater. The GDPR was adopted by the EU in April 2016 after five years of work to modernize the EU’s data regulation.”]
Source: https://www.csoonline.com/article/3161036/why-you-need-a-data-protection-officer.html