Unfortunately, there are no ready-made risk assessments that every company can refer to to ensure that the new requirements are met. Each company must therefore document that it has assessed the risks of the supplier’s information security and data processing

It’s no secret that the EU closely monitors the privacy and data handling practices of major US tech companies through the GDPR Act. Now the law has formed the basis for one of the largest such fines ever imposed, reports