IT infrastructure and services are now regarded as a significant area of systemic risk to be managed via legal and regulatory frameworks. Most countries in the world now have data protection laws to impose obligations on organizations (controllers) which process data, and to give the data subjects (individuals whose data are being processed) specific rights … Continue reading GDPR: General Data Protection Regulation