GDPR: six month countdown begins – Have you reviewed the five key areas?

On 25 May 2018, all organisations within the UK and around the globe will be required to abide by the new incoming EU General Data Protection Regulations (GDPR). With only six months to go, you should be at a stage now of making the necessary steps to be fully compliant with GDPR by the enforcement date.

We have prepared a list of questions to help you review the five key areas. Please read them below.
 
  • Are you fully aware of what personal information you hold and where within your organisation this information is maintained and managed?
  • Have you addressed how you are going to communicate privacy to your external stakeholders? Has your privacy policy been reviewed to ensure this is going to be compliant under GDPR?
  • Are your consents up to date and GDPR compliant, for example, the details include explicit opt-in where required? Are you recording the consents obtained so you have a record of these?
  • What is your organisation's policy for reacting to a data breach? Will this policy be able to meet the new data breach reporting deadlines set under GDPR? Is everyone aware of the data breach policy throughout the organisation?
  • Is your organisation required to have a data protection officer? If not have you designated the responsibility of data protection to an individual within the organisation?
If you are unsure about the answers to the above questions, please contact Christopher Beveridge. We would welcome the opportunity to meet and tell you how we can help you successfully prepare for GDPR.
 

Leave a comment

 Security code