Updated 14 November 2018. This blog was originally published before the GDPR took effect in May 2018.
We’ve produced five free resources to help you understand what the GDPR requires you to do:
- Webinars: Supporting you in your GDPR compliance project
Our 2018 GDPR webinar series covers topics such as accountability, suffering a data breach, and the required policies and procedures.
A range of data protection and cyber security experts, including Alan Calder and Adrian Ross, will guide you through the first steps of implementing a GDPR compliance programme.
Webinar titles include:
- Risk assessments and applying organisational controls for GDPR compliance
- Conducting a data flow mapping exercise under the GDPR
- Legal obligations and responsibilities for data processors and controllers under the GDPR
- Data protection by design and by default under the GDPR
- Appointing a data protection officer (DPO) under the GDPR
- GDPR requirements for Cloud providers
- Accountability under the GDPR, and what it means for boards and senior management
- Data breaches and the EU GDPR
- Revising policies and procedures under the EU GDPR
- EU GDPR and you: requirements for marketing
- Green paper: EU General Data Protection Regulation – A compliance guide
Learn how the GDPR affects your organisation, what key changes it introduces, and its scope and impact in our free green paper EU General Data Protection Regulation – A compliance guide.
- Video: What does the GDPR mean for your business in the UK
Alan Calder, the founder and executive chairman of IT Governance, answers the important questions surrounding the GDPR and how it affects businesses in the UK. He covers topics such as Brexit, reporting data breaches, proving your compliance and working out where to start.
- Infographic: What the GDPR means in 1 minute
From fines to international data transfers, this short infographic gives you a brief overview of the GDPR and what it means for your business.
- GDPR templates: Documenting your compliance
In order to show that you comply with the GDPR, you will need to produce and maintain a wide range of documentation. This will not only help you meet the explicit and implicit requirements for specific records (especially those to prove you have obtained consent from data subjects), but will also ensure you have evidence to support your claims should the supervisory authority have any cause to investigate.
Download a sample set of free GDPR templates that will help you meet the Regulation’s stringent data protection requirements.
GDPR Breach Support Service
If you suffer a personal data breach you’ll need to work quickly to meet the GDPR’s 72-hour data breach notification requirement.
IT Governance’s GDPR Data Breach Support Service is on hand to help you respond appropriately and effectively.
Our team of data privacy lawyers and data protection officers will help you to:
- Gather information on the nature and scope of the data security incident (data forensics is not included);
- Identify if the incident is a ‘reportable data breach’ under the GDPR;
- Report the breach on your behalf to the relevant supervisory authority and manage subsequent communications between yourself and the regulator;
- Assess whether there is a high risk to the rights and freedoms of individuals affected by the breach;
- Draft a breach notification to the individuals affected;
- Document the facts relating to the breach, its effects and the remedial action taken; and
- Evaluate how a recurrence can be avoided – whether through better processes, further training or other corrective steps.