The GDPR Project Plan
- Have we put a project plan together to ensure compliance?
- Have we secured buy-in at executive level to ensure we have the required resources and budget on hand to move the project forward?
- Do we require a Data Privacy Impact Assessment?
- Do we need to hire a Data Privacy Officer?
- Are we implementing a policy of ‘Data Protection by Design and Default’ to ensure we’re systematically considering the potential impact that a project or initiative might have on the privacy of individuals?
- Have we considered how we handle employee data in our plan?