Security awareness

Security Awareness Training for the European Union General Data Protection Regulation (EU GDPR)

January 19, 2017 by Infosec

As part of SecurityIQ’s ongoing commitment to providing the most timely access to new and relevant training resources on security related topics that impact your business, we are excited to introduce our latest AwareEd security awareness training module covering the European Union General Data Protection Regulation (EU GDPR), which will go into effect in May of 2018. These regulations represent a significant change in policies and procedures for the businesses they impact, and failure to meet the requirements can result in significant fines. Furthermore, any organization outside of the EU will be subject to EU GDPR requirements if any collect any information on EU residents. This means that now is the time for businesses across the world to begin understanding how the EU GDPR impacts their organizations and provide training to their employees on how to comply with the coming requirements.


The personal data protection landscape is constantly evolving. Individuals are increasingly demanding that their personal information is handled and stored in a way that minimizes the possibility of unauthorized access or use of their information outside of the reason for which it was originally shared. Many organizations have their own policies in place to address these kinds of concerns, but recently we have seen new legislation from governments around the world that are also being developed to address this issue. In particular, the European Union has been working on a regulatory framework that will impose even stricter and more clearly defined rules on how organizations handle the personal information of any EU citizen. This proposed regulation is about to become law and it is essential that businesses that interact with European customers thoroughly understand its requirements and implement policies to comply.

The EU GDPR defines personal data as “any information relating to an identified or identifiable natural person (or ‘data subject’)” and has developed a framework that is based on seven principles for protecting this data when it is being processed. An emphasis is placed on the rights of the individual within this framework. Thus, it is extremely important that businesses understand how to properly handle and process an individual’s data in accordance with the guidelines provided by the GDPR.

The EU GDPR regulations don’t officially go into effect until May, 2018, but now is the time for organizations to begin the process of preparing for the coming changes and training employees to successfully support the requirements of the EU GDPR framework to avoid costly fines for failing to successfully carry out its objectives.

The AwareEd online security awareness training solution from SecurityIQ now includes a detailed EU GDPR module that will help any organization learn about this new regulation and its responsibility for ensuring compliance. Remember, even if your organization isn’t located in the EU, if you collect data from an EU resident, you must be aware of your obligations to protect their personal information. To learn more about how AwareEd, from SecurityIQ, can help your organization quickly and effortlessly train employees on EU GDPR, as well as topics that are core components of any security awareness training program, visit to setup a free SecurityIQ account today.

Posted: January 19, 2017
View Profile