Why paper security is integral to GDPR compliance

The GDPR’s reach extends globally to all organisations that control or process personally identifiable data about people in the EU, regardless of the geographic footprint of those organisations. GDPR requirements apply to both electronic and paper-based personal data and means that all organisations should address GDPR requirements if they handle EU-originated personally identifiable data.