Cybersecurity in the GDPR

On  22.05.2023 Cyen’s Iva Tasheva and Eva Saeva celebrated 5 years since the GDPR came into force in 2018 and discussed the cybersecurity requirements in this landmark EU data protection law.

They focused on the different technical & and organisational measures companies need to adopt to protect the personal data they store and process, and the different cybersecurity requirements each company needs to adhere to to comply with these measures.

They also talked about the role of third parties in processing personal data and where liability lies in case of a security incident, providing some relevant examples.