Following are a few key questions on the implications of GDPR for business and financial research firms, that I am trying to get answers to. I would greatly appreciate if someone could share their knowledge on this regulation.
In case you want to share some sources, please only share those sources that are succinct and highly relevant.
- How does the new GDPR regulation impact research firms in terms of their operations (project delivery) and business development?
- What would it take to provide comfort to our existing/ prospective clients?
- What steps does a research firm need to take to ensure compliance?
- Is it possible for relatively smaller business with budgetary constraints, to implement the compliance steps internally without external/ third party support?
- What is the timeline for compliance?