With the GDPR (General Data Protection Regulation) law in place for almost a year, businesses should really ensure that they achieve compliance. Keep in mind that this regulation not only applies to European businesses that work with the customer data of EU citizens. GDPR a global data protection law that applies to any entity that processes EU citizen data. Even if your company is in the US, China, Brazil, Africa or in Saudi Arabia you will need to comply. The two year grace periode is ending!

2019 GDPR complete compliance checklist

Step A: Create a lawful basis and ensure transparency.

  1. Conduct an information audit to determine what information you process and who has access to it.
  2. Have a legal justification for your data processing activities.
  3. Provide clear information about your data processing and legal justification in your privacy policy

Step B: Ensure data protection by design and by default

  1. Data protection has to be taken in account at all times. When developing a new product or service and every-time you are processing data.
  2. Make sure to encrypt, anonymize and pseudonymize personal wherever possible.
  3. Setup an internal security policy and ensure your employee are aware.
  4. Understand when to conduct a data protection (DP) assessment, and have the process setup so you can carry it out instantly.
  5. Ensure that you have a procedure in place regarding what to do and whom to contact in the event of a data breach. Make sure you know which authorities to contact when.

Step C: Governance & accountability

  1. Make one of your employee responsible for ensuring compliance across your organization.
  2. Make sure data processing agreements have been signed with any third parties that process personal data on you companies behalf.
  3. If you company is outside the EU: appoint a representative within the EU.
  4. Appoint a DPO (Data Protection Officer) when necessary.

Step D: EU citizen privacy rights

  1. Ensure it is easy for your customers to request and receive all the information that you have on them.
  2. Make it easy for your customer to correct and update inaccurate or incomplete information.
  3. EU citizen should be able to file a personal data delete request.
  4. EU Customers need to be able to stop you form processing their personal data.
  5. Ensure there is a process in place that enables EU citizen to receive a copy of all their personal data if a format that can be easily read and processed. They are also able to object.
  6. You need to make it easy for people to request human intervention in any automated process that make decisions about people.

A lot of checkpoints! To help you, we created a free GDPR implementation project plan that includes all the steps you need to cover in a easy adjustable time-line.

Wait there is more!

Just one complete document with all the Powerpoint, Excel and Word documents you need to get ready. Only today, we offer this complete compliance KIT with 50 well crafted documents, for $45 instead of $55.Use the following discountcode at checkout 1GDPR

Have a look and decide yourself: GDPR Complete Compliance KIT