Signavio GDPR Resource Center

Signavio is a global GDPR 2019 influencer. Cited in more than 15 global publications, we now sit in the top three global GDPR 2019 searches, and were among the first to warn of the threat of GDPR bounty hunters. Now, to extend our data privacy expertise beyond the first year of GDPR, we have launched the Signavio GDPR Resource Center…


G.etting D.ata P.rotection R.ight

Signavio turns the GDPR in your favor

In this Signavio GDPR Resource Center hub, you will find leadership posts and expert data privacy analysis, with interviews across leading global publications, including Entrepreneur and The Australian. You can also read our GDPR blog post campaign and can stay informed on the latest updates with the popular new GDPR white paper, and technical guide.

After all, Getting Data Protection Right is what the GDPR is made of.

Signavio GDPR Resource Center: Evaluate your situation

There is no getting away from it; the European General Data Protection Regulation has fundamentally revolutionized the handling, sourcing, and distribution of data collected about customers living within the European Union. Never before has data handling and privacy been positioned as a human right.

Signavio tip: Personal data is any information related to a person that can be used to identify the person, including a name, a photo, an email address, bank details, posts on social networking websites, medical information, or a computer IP address.

What are my obligations?

Signavio GDPR Resource Center

You can’t fly under the radar! The GDPR applies to organizations located within the EU but equally so to organizations located outside of the EU if they offer goods or services to, or monitor the behavior of, EU data subjects.

Signavio tip: The GDPR applies to all companies processing and holding the personal data of ‘data subjects’ residing in the European Union, regardless of the company’s location.

Liability & Fines - Organizations can be fined up to 4% of annual global turnover or €20million, whichever is higher. - The Data Protection Authority must be notified within 72 hours or face fines of €10m. - Fines must be effective, proportionate and dissuasive for each case


As it stands, the GDPR applies regardless of Brexit and CASS. With such political uncertainty, this will continue to be a hot topic moving forward. Stay tuned!

(Another) BREXIT ALERT 2019:

The EU Payments Services Directive (PSD2), aimed at the way merchants take payments, took effect on January 13 2018, bringing new laws improving consumer rights in areas such as transparency and surcharging. As it stands, regardless of Brexit, some of its more disruptive UK-facing regulations are still working their way through the EU Parliament. Be aware they could  come into force as early as September 2019!


Transparency is fundamentally linked to fairness. Transparent processing is about being clear, open, and honest with people from the start about who you are, and how and why you use their personal data. Article 25 positions data protection as an integral part of technological and IT development, as well as how a product or service is delivered.


GDPR 2019 stats: - Over 57,000 complaints lodged with national data protection watchdogs. - Over 27,000 organizations have reported data breaches under the 72-hour time limit. - Google fined €50 million for not properly disclosing to users how data is collected.

**Publications... across the world

Signavio is currently working with 15+ publications on the significance of the GDPR in 2019, including The Australian and Which-50. Here is a sample of some of the interviews featuring Signavio Co-founder and CEO, Dr. Gero Decker: