Skip to Main Content
Cyber Security as a Service: Your complete cyber security solution from just £245 per month. Learn more
EU General Data Protection Regulation (GDPR) – An Implementation and Compliance Guide, Third edition

EU General Data Protection Regulation (GDPR) – An implementation and compliance guide, fourth edition

SKU: 5620
Authors: IT Governance Privacy Team
Publishers: ITGP
Format: Softcover
ISBN13: 9781787782488
Pages: 402
Published: 15 Oct 2020
Availability: Available now
Format: Adobe eBook
ISBN13: 9781787782495
Pages: 386
Published: 15 Oct 2020
Availability: Available now
Format: Adobe ePub
ISBN13: 9781787782501
Pages: 386
Published: 15 Oct 2020
Availability: Available now

Now in its fourth edition, this bestselling guide is the ideal companion for anyone carrying out a GDPR (General Data Protection Regulation) compliance project. It provides comprehensive guidance and practical advice on complying with the Regulation, including:

  • The GDPR in terms you can understand;
  • The obligations of data controllers and processors;
  • What to do about international data transfers; and
  • Data subjects’ rights and consent.

Buy now, pay later! Enjoy the benefits of paying by purchase order with an IT Governance corporate account. Apply online today or call our training sales team on +44 (0)333 800 7000.

Price: £19.95

Understand your GDPR obligations and prioritise the steps you need to take to comply

The GDPR gives individuals significant rights over how their personal information is collected and processed, and places a range of obligations on organisations to be more accountable for data protection.

The Regulation applies to all data controllers and processors that handle EU residents’ personal information. It supersedes the 1995 EU Data Protection Directive and all EU member states’ national laws that are based on it – including the UK’s DPA (Data Protection Act) 1998.

Failure to comply with the Regulation could result in fines of up to €20 million or 4% of annual global turnover – whichever is greater. This guide is a perfect companion for anyone managing a GDPR compliance project. It provides a detailed commentary on the Regulation, explains the changes you need to make to your data protection and information security regimes, and tells you exactly what you need to do to avoid severe financial penalties.

Clear and comprehensive guidance to simplify your GDPR compliance project

Now in its fourth edition, EU General Data Protection Regulation (GDPR) – An Implementation and Compliance Guide provides clear and comprehensive guidance on the GDPR. It explains the Regulation and sets out the obligations of data processors and controllers in terms you can understand.

Topics covered include:

  • The DPO (data protection officer) role, including whether you need one and what they should do;
  • Risk management and DPIAs (data protection impact assessments), including how, when and why to conduct one;
  • Data subjects’ rights, including consent and the withdrawal of consent, DSARs (data subject access requests) and how to handle them, and data controllers and processors’ obligations;
  • Managing personal data internationally, including updated guidance following the Schrems II ruling;
  • How to adjust your data protection processes to comply with the GDPR, and the best way of demonstrating that compliance; and
  • A full index of the Regulation to help you find the articles and stipulations relevant to your organisation.

Brexit and the GDPR

The application of the GDPR in the UK is slightly more problematic as the nation voted to leave the EU and did so after the GDPR came into law. The GDPR has been passed into law in its entirety in the UK under the Data Protection Act 2018, so, in general terms, the compliance activities for UK organisations will remain largely unchanged. One of the key details of the UK’s final departure, however, may have a significant impact: whether the UK will be awarded an adequacy decision from the European Commission.

At the time of publication, it was not clear whether the UK would receive an adequacy decision. If there is, EU and UK data controllers can proceed as they did before Brexit, although those UK organisations supplying services into the EU will need to appoint an EU representative in line with the requirements of Article 27 of the GDPR.

Learn more about the GDPR and how Brexit may affect data protection law in the UK

About the author

IT Governance Privacy Team

The IT Governance Privacy Team, led by Alan Calder, has substantial experience in privacy, data protection, compliance and information security. This practical experience, their understanding of the background and drivers for the GDPR, and the input of expert consultants and trainers are combined in this must-have guide to GDPR compliance.

Customer Reviews

(4.00)stars out of 5
# of Ratings: 1
1. on 13/10/2020, said:
4 stars out of 5
This helps make the GDPR more accessible when reviewing how to apply it to your organisation. Complementary to the online training sessions to enhance confidence on the subject in the workplace
Showing comments 1-1 of 1
This website uses cookies. View our cookie policy
WIN £100