Google has joined Amazon Web Services in promising customers of its cloud services that it will be compliant with new European Union data protection rules due to take effect next year.
Neither company is fully compliant yet, but both have now made public commitments to meet the requirements of the EU General Data Protection Regulation (GDPR) by May 25, 2018, echoing a promise Microsoft made back in February.
The GDPR replaces the 1995 Data Protection Directive. Among its biggest changes are requirements that companies:
- erase personal data on request unless there is a legitimate reason to retain it;
- inform those affected by data breaches, and
- design data protection into their products and services from the earliest stage of development.