Organisations are probably fed up of alarm bells ringing when it comes to the EU General Data Protection Regulation (GDPR). We know it’s happening soon, but what does it actually mean and what do we need to do?
What is the GDPR?
The GDPR is designed to protect the personal data of EU residents. Yes, it’s law!
It imposes new requirements on organisations to minimise the risk of a data breach and maximise the security of personal information. Think Data Protection Act version 2.0.
Who will it affect?
Organisations of any size in any country that collect and/or process the personal data of EU residents.
What do we need to do?
As an organisation that processes EU residents’ personal data, you need to meet the requirements of the Regulation. See our key changes for an overview.
You should appoint a data protection officer (DPO) if you process large volumes of data or operate in the essentials services sector, and begin a compliance project as soon as possible regardless of your sector. As part of this, you should review your data situation and implement new procedures as required by the Regulation.
A useful tool for completing the project is our EU GDPR Documentation Toolkit
Are you starting a GDPR compliance project?
Join IT Governance’s founder and executive chairman, Alan Calder, to learn about the first steps your organisation should take to manage and achieve compliance with the GDPR. Webinars are followed by a Q&A session.
Our free ‘First Steps’ webinar series is on these dates:
Thursday, 21 September at 3:00 pm (GMT)
Thursday, 19 October at 3:00 pm (GMT)
Thursday, 16 November at 3:00 pm (GMT)
Thursday, 30 November at 3:00 pm (GMT)
Thursday, 14 December at 3:00 pm (GMT)