On 25 May 2018, the European Union (EU) (and perhaps less so, the rest of the world) welcomed the introduction of the General Data Protection Regulation (GDPR). Described as the most significant overhaul of data protection laws in recent memory, the GDPR has caused large and small entities around the world to stop, reconsider and, in most cases, re-calibrate their data handling and management practices. But what has changed in practice? 

This article reflects on our learnings over the past half year: how we have seen Australian organisations manage their compliance obligations, what we are currently seeing in terms of enforcement, some of the intended and unintended consequences we have seen the GDPR have, and what we might expect to see in the coming months and years.

Click below to read our full report.