Explore the critical implications of GDPR in this informative 25-minute conference talk. Gain insights into the stricter privacy regulations affecting organizations handling EU citizens' personal data, including potential fines of up to 4% of global annual revenue or €20 million. Learn about key GDPR requirements, the roles of Data Protection Authorities and Officers, and understand what constitutes personal data. Discover how GDPR impacts global businesses, even those not directly operating in the EU. Examine the importance of changing processes and procedures, such as incident response, rather than focusing solely on compliance. Delve into subject rights, including rectification and the right to be forgotten, as well as key management considerations. Benefit from the expertise of Thomas Fischer, a seasoned professional with over 25 years of experience in various aspects of information security.