Skip to Main Content
This website uses cookies. View our cookie policy
United Kingdom
Select regional store:
Spend And Save! Receive A Free Corporate Gift Card Up To The Value Of £100 This December. Find Out How >>
EU General Data Protection Regulation (GDPR) - An Implementation and Compliance Guide, Second Edition

EU General Data Protection Regulation (GDPR) - An Implementation and Compliance Guide, Second Edition

SKU: 4852
Format: Softcover
ISBN13: 9781849289450
Pages: 400
Published: 31 Aug 2017
Availability: In Stock
Format: Adobe eBook
ISBN13: 9781849289467
Pages: 381
Published: 31 Aug 2017
Availability: Available
Format: Adobe ePub
ISBN13: 9781849289474
Pages: 381
Published: 31 Aug 2017
Availability: Available

This bestselling guide is the ideal companion for those starting out on their General Data Protection Regulation (GDPR) compliance project, providing comprehensive guidance and practical advice on implementing a compliance framework. It covers:

  • The GDPR in terms you can understand;
  • The obligations of data controllers and processors;
  • What to do with international data transfers; and
  • Data subjects’ rights and consent.

What format do I need?

Regular Price: £39.95
On Sale For: £19.95


Understand the requirements of the GDPR and prioritise the necessary steps for compliance


“Its practical approach to various aspects of the GDPR will be of value to DP practitioners in organisations of all sizes”

Laura Linkomies

Privacy Laws and Business Report, September 2017


The GDPR expands the rights of individuals to control how their personal information is collected and processed, and places a range of new obligations on organisations to be more accountable for data protection.

The Regulation, which came into force on 25 May 2018, applies to all data controllers and processors that handle EU residents’ personal information. It supersedes the 1995 EU Data Protection Directive (DPD) and all EU member states’ national laws that are based on it – including the UK Data Protection Act 1998 (DPA).

All organisations, of any size and anywhere in the world, that process EU residents’ personal data must comply with the Regulation. Failure to do so could result in fines of up to €20 million or 4% of annual global turnover – whichever is greater.

Organisations that act quickly to ensure compliance with the GDPR will be those that thrive in the evolving regulatory environment. Time is running out and, your organisation must prioritise the necessary steps for compliance.

This must-have guide is a perfect companion for those managing a GDPR compliance project. It provides a detailed commentary on the Regulation, explains the changes you need to make to your data protection and information security regimes and tells you exactly what you need to do to avoid severe financial penalties.

Look inside this book here >>


Clear and comprehensive GDPR guidance to kick-start your compliance project

Now in its second edition, EU General Data Protection Regulation (GDPR) – An Implementation and Compliance Guide provides clear and comprehensive guidance to the new data protection law. It explains the Regulation and sets out the obligations of data processors and controllers in terms you can understand.

Topics covered include:

  • The data protection officer (DPO) role, including whether you need one and what they should do;
  • Risk management and data protection impact assessments (DPIAs), including how, when and why to conduct one;
  • Data subjects’ rights, including consent and the withdrawal of consent, subject access requests (SARs) and how to handle them, and data controllers and processors’ obligations;
  • International data transfers to ‘third countries’, including guidance on adequacy decisions and appropriate safeguards, the EU-US Privacy Shield, international organisations, limited transfers and Cloud providers;
  • How to adjust your data protection processes to comply with the GDPR, and the best way of demonstrating that compliance; and
  • A full index of the Regulation to help you find the articles and stipulations relevant to your organisation.

New in the second edition:

  • Additional definitions;
  • Further guidance on the DPO role;
  • Greater clarification on data subjects’ rights;
  • Extra guidance on DPIAs;
  • More detailed information on SARs;
  • Clarification of consent and alternative lawful bases for processing personal data; and
  • An implementation FAQ appendix.

The GDPR will have a significant impact on organisations’ data protection regimes around the world.

Buy EU GDPR – An Implementation and Compliance Guide to understand what you must do to comply.


Brexit and the GDPR

UK organisations handling personal data will still need to comply with the GDPR, regardless of Brexit. The GDPR will come into force before the UK leaves the EU, and the government has confirmed that the Regulation will apply, a position that has been stated by the Information Commissioner’s Office (ICO).

The new Data Protection Bill going through Parliament will transpose the GDPR into UK law, and will continue to apply post-Brexit. The Bill also includes a number of agreed modifications to the GDPR in areas such as academic research, financial services and child protection. Learn more >>


About the authors

IT Governance is a leading global provider of IT governance, risk management and compliance expertise. We pride ourselves on delivering a broad range of integrated, high-quality solutions that meet the real-world needs of our international client base.

Our privacy team, led by Alan Calder, has substantial experience in privacy, data protection, compliance and information security. This practical experience, our understanding of the background and drivers for the GDPR, and the input of our fast-growing team of consultants and trainers are combined in this manual to provide the world’s first guide to implementing the new data protection regulation.


Customer Reviews

(5.00)stars out of 5
# of Ratings: 2
1. on 05/12/2017, said:
5 stars out of 5
The book is very good. It's really very helpful to understand the new regulation on data protection. Must be in the library of each GDPR applier. Thanks to the author!
Was this comment helpful?
(1 people found this comment helpful, 4 did not)
2. on 05/12/2017, said:
5 stars out of 5
Provides great advice through case studies and user-friendly diagrams and you’re able to understand the best approach for GDPR implementation and compliance. The ideas in this book and its analytical approach have inspired me, and I would recommend the book to anyone involved in General Data Protection Regulation (GDPR).
Was this comment helpful?
(2 people found this comment helpful, 4 did not)
Showing comments 1-2 of 2