Genetec is urging North American security directors to get ready for the European Union’s General Data Protection Regulation (GDPR). While the initiative is led by the European Union, the territorial scope of the GDPR is global. As of May 25, 2018, any business that is collecting or storing personally identifiable information (PII) of EU citizens (including surveillance video, cardholder information and activities tracked by an access control system, and license plate numbers captured by an automatic license plate recognition (ALPR) system) will be held accountable, regardless of where the organization is based.
On 6 July of this year, the Bavarian Data Protection Authority issued a brief guidance paper on video surveillance under the new European Union (EU) General Data Protection Regulation (“GDPR”). This short paper is the first issue within a series of non-binding guidance papers on selected topics in relation to the GDPR, which the Bavarian Data Protection Authority has planned to publish periodically. This is a significant step forward for EU countries to adopt a more uniformed approach to video surveillance retention policies.