IT Governance discusses the impact of the EU GDPR (General Data Protection Regulation) on small and medium enterprises (SMEs), including how to appropriately prepare in order to avoid administrative fines and how to prioritise data protection to the advantage of both the customer and the SME.
The article provides guidance on assessing, initiating and implementing an SME’s GDPR compliance project, covering issues such as appointing a DPO (data protection officer), conducting a DPIA (data protection impact assessment) and subject access requests among other GDPR challenges.
Read more >>