By Mandate


The General Data Protection Regulation, or GDPR, is a data protection law that applies to all companies worldwide that process personal data of European Union (EU) citizens.

Talk to Sales

The Big One

The GDPR is among the world's most stringent data protection rules, while delivering far broader scope and stiffer punishment than any previous EU privacy legislation. Trustwave can help you evaluate how well your organization is addressing the regulation, identify gaps that need filling and ensure you are doing all you can to securely handle personal data.

GDPR: Fast Facts and Consequences

  • The GDPR applies to all companies worldwide that handle personal data of EU citizens and consists of six privacy principles involving how personal data is collected, processed and stored.
  • The goal of the regulation is to harmonize data protection laws across the EU's 28 member states and get the continent ready for the digital age.
  • It aims to give citizens control over of their personal data, and to simplify the regulatory environment for business.
  • Violators face fines ranging on the higher end of €20 million or 4% of global turnover, whichever is greater, to the lower end of €10 million or 2% of global turnover, whichever is greater.
Research Report

2020 Trustwave Data Security Index

The 2020 Trustwave Data Security Index report depicts how technology trends, compromise risks and regulations are shaping how organizations’ data is stored and protected.

Get Your Copy Now

Strategically Improve Your Compliance.

  • Education Icon


    Helps you understand the scope of the regulation and the requirements, and the extent to which your entire organization has to engage in addressing the regulation.

  • Business Man Icon

    Privacy and Information Security Risk Assessment

    Helps you holistically and strategically assess how well your organization is addressing requirements, and develop a plan for remediating weaknesses.

  • Tools Icon

    Data Privacy Impact Assessment

    Helps you evaluate ongoing compliance with your high-risk processes, as required by the GDPR.

  • Info Icon

    Other Services

    Additional GDPR-specific offerings include security maturity assessments, Trustwave SpiderLabs Purple Team Service to train your team in both the defensive (blue team) and offensive arts (red team), and data security and monitoring.


In addition to GDPR services, Trustwave offers a broad security portfolio and industry-leading managed security services to help you align with the requirements, as well as grow your maturity to move beyond compliance.

Managed Security Services

Reduce risk with managed security services that evolve processes, elevate data protection strategies and advance the way you monitor for, detect and respond to threats.

Managed Security Testing

Receive on-demand, precision-based penetration testing with just a few clicks of a mouse. With a subscription, you can log in to the portal and schedule testing of vulnerabilities in databases, networks and applications.

Enterprise-Grade Data Security

Identify security lapses and ensure your information repositories stay protected from internal gaffes and nefarious attackers, while maintaining compliance with GDPR.

Incident Readiness and Response

Prepare for and react to security incidents and breaches with the help of our SpiderLabs team, who identifies root causes of incidents and communicates responses in a way your team and management can understand.

Security Awareness Education & Secure Development Training

Give your employees and your developers the tools they need to protect your data through and build secure code.

Endpoint Security

Detect and respond to threats impacting the preferred starting point of attackers: your endpoints. In addition, deploy and manage policy, block malware on the desktop, control mobile devices and streamline GDPR compliance with our Endpoint Protection Suite.

Secure Email Gateway Cloud

A single solution that delivers advanced protection against today’s sophisticated email-based threats, extensive policy controls, and in-depth data security and compliance management.