Skip navigation


What You Need to Know about Data Protection

22 MARCH 2018

Cigna not only complies with all applicable legal and regulatory requirements, we go above and beyond to make sure our clients' data are safe and secure. That’s why we’re already preparing for the upcoming General Data Protection Regulation (GDPR).

We’re receiving quite some questions about this new regulation, so here’s what you need to know. The GDPR is a new regulation that will replace the current Data Protection Directive 95/46/EC. It significantly affects Data Protection Laws across the European Union (EU) and will become fully effective by 25th May 2018.

Key impacts of the GDPR

  • It’s the most relevant EU data protection legal re-write in 20 years.
  • It has a worldwide effect, as it applies to any business collecting or processing data of EU citizens, or even offering them goods or services.
  • It introduces significant new data protection compliance obligations for businesses at organisational and technical levels.
  • It requires businesses to be fully accountable for compliance with applicable regulations.

A GDPR Implementation project plan is in place to meet the requirements introduced by the new legal framework (e.g. review of existing processes, update of privacy notices and policies, additional measures to meet accountability obligations, etc.) in a timely manner.

Our GDPR Implementation plan identifies specific actions classified into nine broader categories.

We’re taking all aspects into account so our clients can rest assured that their organisation’s data will continue to be safe and secure.