Please note the grace period for the EU GDPR ends on 25 May

You can no longer avoid the EU GDPR – General Data Protection Regulation. And you should not avoid the GDPR, and not only because the grace period will end on 25 May 2018. From this date onward, you will face the possibility of serious penalties if you do not comply.


The GDPR’s main aim is to harmonise data privacy laws across Europe. In addition, it aims to protect and empower all EU citizens’ data privacy.

Who does the EU GDPR affect?

GDPR applies to your organisation if you are processing and/or controlling the personal data of data subjects residing in the European UnionThis applies regardless of your organisation’s location.
Decision makers and key people in your organisation should be aware of the GDPR (according to the GDPR).


If you are in breach of EU GDPR you will face a fine of up to 4% of annual global turnover or €20 Million (whichever is greater). There is a tiered approach to fines. For example, your fine will be ‘only’ 2% if you don’t have your records in order or if you didn’t notify the supervising authority and data subject about a breach.
Because the EU GDPR applies to data controllers and data processors, so-called ‘clouds’ are not exempt from GDPR enforcement.

Local countries’ data protection regulators will be more lenient on companies that have shown awareness of the GDPR. So if you are working on implementation you needn’t worry. However, if you haven’t made any effort, you could be in trouble.

Get started now

At DuoTrainin we have created several GDPR courses.
Our EU GDPR Awareness Course is for decision makers and key people in any organisation (at a cost of between EUR 15.00 – 22.50 per person, per calendar year). See a preview of this course in the short video below. This course is also available in Dutch and very soon, in Czech as well.

For those tasked with, or taking part in, the implementation of the GDPR, we have created a course and step-by-step approach for Data Controllers and one for Data Processors.
In all our GDPR courses you will stay on one page, so that you will never lose sight of where you are in the process, despite the complexity and vastness of the GDPR.

The EU General Data Protection Regulation (GDPR) was approved by the EU Parliament on 14 April 2016. See the official publication in the EU Official Journal, in all languages of the EU.
The key articles of the GDPR, can be found on the official EU website.

Leave a comment


email* (not published)


* indicates required
Email Address*

Email Format