The General Data Protection Regulation (the “GDPR”) came into effect on 25 May 2018.
The GDPR introduced additional obligations and responsibilities on businesses in how they collect, and use personal data. These obligations focus on processing arrangements, security obligations as well as a greater emphasis on transparency and accountability. These new obligations, when coupled with the increased awareness of data protection rights among the general population, make it increasingly important for businesses to be able to demonstrate compliance with the requirements of GDPR.
The article below explores the potential application of the GDPR in running a typical Irish merger or acquisition and sets out some practical guidelines on how parties to the transaction can demonstrate compliance with the GDPR requirements.
This article was co-authored by Corporate partner, Chris Bollard and senior associate, Veronica O'Donnell.