The Procedures and Controls
- Are our Security team informed to ensure they’re aware of their obligations under the GDPR and do they have sufficient resources to implement any required changes or new processes?
- Do we have procedures in place to handle requests from data subjects to modify, delete or access their personal data? Do these procedures comply the new rules under the GDPR?
- Do we have security notification procedures in place to ensure we meet our enhanced reporting obligations under the GDPR in case of a data breach in a timely manner?
- Are our staff trained in all areas of EU data privacy to ensure they handle data in a compliant manner?
- Do we review and audit the data we hold on a regular basis?
To receive our white paper on this topic, please fill out the this form: