Raise AwarenessDecision-makers and key staff must understand the law. GDPR compliance requires budget, time, and resource allocation. Ensure your leadership team recognizes the potential for significant fines if the company fails to comply.
Update Privacy NoticesReview your current privacy notices. Under the GDPR, you must explain your lawful basis for processing data, your retention periods, and that individuals have a right to complain to the relevant supervisory authority if they think there is a problem with the way you are handling their data. Update Privacy NoticesReview your current privacy notices
Plan for Data BreachesYou must have the right procedures in place to detect, report, and investigate a personal data breach. The GDPR introduces a duty on all organizations to report certain types of data breaches to the relevant supervisory authority within 72 hours of becoming aware of it. The GDPR introduces a duty on all organizations
Preparing for GDPR is an ongoing process of accountability and transparency. Here are 10 essential steps to ensure your business meets these standards. This is mandatory for public authorities
The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information from individuals who live in the European Union (EU). Regardless of where your business is located, if you serve EU citizens, you must comply.
Designate a Data Protection Officer (DPO)Check whether you are required to formally designate a Data Protection Officer. This is mandatory for public authorities, organizations that engage in large-scale systematic monitoring, or those that process sensitive personal data on a large scale. Even if not mandatory, appointing a point person for compliance is highly recommended.
