@article{idpro 24, author = {Andrew Hindle}, title = {Impact of GDPR on Identity and Access Management}, volume = {1}, year = {2020}, url = {https://bok.idpro.org/article/id/24/}, issue = {1}, doi = {10.55621/idpro.24}, abstract = {This article examines the implications of the General Data Protection Regulation (“GDPR”, “Regulation”) on Identity and Access Management (“IAM”) process and system design. It introduces organisational and technical good practices that may help ensure demonstrable compliance with the Regulation as well as improve user experience and customer trust.<br><br>Although the focus here is on the GDPR, the approaches described may, by extension, also help in complying with data protection legislation in other geographies including (for example) the California Consumer Privacy Act (“CCPA”), or the Brazilian General Data Protection Law (“LGPD”).<br><p><br></p>}, month = {3}, keywords = {GDPR,privacy,CCPA,LGPD}, publisher={IDPro}, journal = {IDPro Body of Knowledge} }