Products

Explore Our Customised Security Awareness Training and Human Risk Management Solutions - Equip your team with the essential skills to defend against modern cyber threats. Our platform offers everything from phishing simulations to comprehensive policy management, empowering your workforce to enhance security and ensure compliance effectively.

Security Awareness Automation

Schedule Your Annual Awareness Campaign In A Few Clicks

Phishing Simulation

Stop Phishing Attacks In Their Tracks With Award-Winning Phishing Software

eLearning Content

Cyber Security eLearning to Explore our Award-Winning eLearning Library, Tailored for Every Department

Compliance Management

Simplify Policy, Privacy, and Incident Management for Total Compliance

Industries

Explore the versatility of our solutions across diverse industries. From the dynamic tech sector to healthcare, delve into how our solutions are making waves across multiple sectors. 


Financial Services

Creating A First Line Of Defence For Financial Service Organisations

Enterprises

A Security Awareness Training Solution For Large Enterprises

Education Sector

Engaging Security Awareness Training For The Education Sector

Tech Industry

Transforming Security Awareness Training In The Tech Industry

Governments

A Go-To Security Awareness Solution For Governments

Remote Workers

Embed A Culture Of Security Awareness - Even At Home

Healthcare Workers

See Our Tailored Security Awareness For Healthcare Workers

NIS2 Compliance

Support Your Nis2 Compliance Requirements With Cyber Security Awareness Initiatives

Resources

From posters and policies to ultimate guides and case studies, our free awareness assets can be used to help improve cyber security awareness within your organisation.

Resources Overview
Cyber Security Awareness For Dummies

An Indispensable Resource For Creating A Culture Of Cyber Awareness

Ultimate Guide To Phishing

Educate Employees About How To Detect And Prevent Phishing Attacks

Anti Phishing Policy

Create A Security-Conscious Culture And Promote Awareness Of Cyber Security Threats

A-Z Cyber Security Terminology

A Glossary Of Must-Know Cyber Security Terms

Free Stuff

Download Our Free Awareness Assets To Improve Cyber Security Awareness In Your Organisation

Dummies Guide To Cyber Security Elearning

The Ultimate Guide To Implementing Effective Cyber Security Elearning

Free Awareness Posters

Download These Complimentary Posters To Enhance Employee Vigilance

Case Studies

Hear How We’re Helping Our Customers Drive Positive Behaviour In Their Organisations

Cyber Security Behavioural Maturity Model

Audit Your Awareness Training And Benchmark Your Organisation Against Best Practice

About

With 18+ years of experience in the Cyber Security and Compliance market, MetaCompliance provides an innovative solution for staff information security awareness and incident management automation. The MetaCompliance platform was created to meet customer needs for a single, comprehensive solution to manage the people risks surrounding Cyber Security, Data Protection and Compliance.

Why Choose Us

Learn Why Metacompliance Is The Trusted Partner For Security Awareness Training

Careers

Join Us and Make Cybersecurity Personal

Leadership Team

Meet the MetaCompliance Leadership Team

Employee Engagement Specialists

We Make It Easier To Engage Employees And Create a Culture of Cyber Awareness

MetaBlog

Stay informed about cyber awareness training topics and mitigate risk in your organisation.

What’s the difference between GDPR and the data protection directive?

about the author

Share this post

The Data Protection Directive is a European Union directive adopted in 1995 which regulates the processing of personal data within the EU. 

For all intents and purposes, this directive was fit for purpose at the time.

 

However, a lot has happened since 1995. For example, the band Steps formed, disbanded, reformed, disbanded again and then formed again (let’s hope they stay together this time, it will be a tragedy otherwise!)

This period also seen the hyper adoption of the internet into our lives. It’s where we shop, socialise, and let’s face it, spend most our days. This has resulted in an incredible amount of data being held on you and me by various companies (perhaps your own) across the globe. Many of which fail to protect it properly.

Worried?

What’s the difference between GDPR and the data protection directive?

You have every right to be as your data is everywhere and maybe even on sale to the highest bidders online. Some companies may not be too careful with the data as they haven’t had to adhere to robust enough regulation in the past.

But fear not (ba ba daba da) the EU Data Protection Directive is finally being updated for the first time since 1995. Even better it is being changed from a directive to a regulation meaning it’s a proper comprehensive, enforceable law.

With the old directive, it meant that each of the EU states could interpret the rules differently. The new regulation on the other hand means that it is to be implemented in the same way by each of the EU member states with the EU supervising its authority across each member state.

First and foremost, it means that organisations will need to pay special attention to customer data. Companies will need to treat customer data as they would wish their own to be treated.

Data redefined

What’s the difference between GDPR and the data protection directive?

Citizen rights lies right at the heart of the new GDPR regulation and organisations must disclose the intended use and duration of customer data, and gain permissions each time a new use of their data is suggested.

EU citizens must opt in to the storage, use and management of their personal data and can access, amend or request their data to be deleted.

On top of this –  it is up to organisations to report data breaches to individuals whose data has been lost, and they must do this within a 72-hour timeframe. The responsibility also then falls on the company to evaluate the data breach and put preventative measures in place to ensure it doesn’t happen again.

One of the most eyepopping parts of the new GDPR regulation is the figures involved. To make sure organisations are fully compliant with the new regulation, steep fines will be in place – as much as 4% of their global turnover or 20,000,000 EUR, whichever is higher. Check out the big businesses that paid a big price before GDPR.

But what about Brexit or if my company is based in another region?

What’s the difference between GDPR and the data protection directive?

Brexit-schmexit. GDPR has a truly global impact. Organisations based outside the EU must comply if they handle, store, manage, or process EU citizens’ personal data. The legislation also comes into effect on May 2018 before Brexit happens. So, Britain will have the same regulations to face as every other EU state, even after they leave the EU.

It’s extremely important for every business with dealings within the EU to fully understand and comply with GDPR law (or face BIG fines!) For more information about GDPR and what you need to do next, click here.

Other Articles on Cyber Security Awareness Training You Might Find Interesting