BE +32 2 318 05 30 LU +352 20202241 info@privacypraxis.com

GDPR : Get ready in 13 steps

1 - AWARENESS

Inform key people and decision-makers about upcoming changes, and evaluate the impact that the GDPR will have on the company or organization.

2 - DATABASE

List all personal data you keep, note their source and list people with whom you shared them. Record your treatments. You may have to organize an information audit for this purpose.

3 - COMMUNICATION

Evaluate your existing privacy policy statement and make any necessary changes in light of the GPRD regulations.

4 - HUMAN RIGHTS

Check whether current procedures within your company or organization are in conformity with  for all people rights, including the way in which personal data can be deleted or communicated.

5 - ACCESS REQUESTS

Update your existing procedures and think about how you will now process access requests with respect to new GDPR deadlines.

6 - LEGAL BASIS FOR PERSONAL DATA PROCESSING

Keep track of the different types of data processing you perform and identify the legal basis for each one.

7 - CONSENT

Evaluate how you request, obtain and record people consent and make all necessary changes.

8 - CHILDREN

Develop systems to verify the age of people and ask the parent (s) or guardian (s) before processing minors’ data.

9 - DATA LEAKS

Provide adequate procedures to detect, report and analyze personal data leaks.

10 - DATA PROTECTION FROM START & IMPACT ANALYSIS

Get familiar with “data protection from the design stage” and “data protection impact analysis” and examine how you can implement these concepts in your business or organization.

11 - DATA PROTECTION OFFICER

If necessary appoint a data protection officer or a person who is responsible for complying with data protection rules. Evaluate the place this person has within your structure and within your company policy.

12 - INTERNATIONAL SCALE

Determine which supervisory body you shourd report to if your company or organization is active wordwide..

13 - EXISTING CONTRACTS

Evaluate your existing contracts – especially with subcontractors – and make the necessary changes in a timely manner.

GDRP INTERACTIVE MAP

Hover on the icons to discover your road map

GDPR EN
1 - AWARENESS
Inform key people and managers about coming changes. They must evaluate all GDPR consequences on the company or organization.
2 - DATABASE
List all private data you store, note their source, list all people who have access to them. Save your data processing. You may need to audit the whole process on this occasion.
3 - COMMUNICATION
Evaluate your current privacy policy and plan necessary modifications in light of GDPR regulations.
4 - INDIVIDUAL RIGHTS
Verify your current process takes into account any claim which could be made by individuals, including the way information can be cancelled or electronically sent.
5 - ACCESS REQUEST
Update your data access rules and think about the way you will now deal with access requests due to GDPR timing issues.
6 - LEGAL GROUNDS FOR PERSONAL DATA PROCESSING
Document any data processing and identify legal grounds for each case.
7 - CONSENT
Evaluate how you request, get and store people consent. Set up necessary changes.
8 - CHILDREN
Set up systems in oder to check users' age and request parents or tutor consent to process minors data.
9 - DATA LEAKS
Plan necessary procedures in order to detect, report or analyze personal data leaks.
10 - DATA PROTECTION FROM CONCEPTION & PERSONAL DATA IMPACT ANALYSIS
Get familiar with concepts such as "data protection from conception" and "personal data protection analysis". Study how you can use these concepts within your company or organization.
11 - DATA PROTECTION OFFICER
Assign a Data Protection Officer or a data manager. Evaluate the role this person should take within your structure and your company or organization policies.
12 - INTERNATIONAL SCALE
Evaluate which is your relevant authority if your company or organization is active abroad.
13 - EXISTING CONTRACTS
Evaluate your existing contracts, especially with sub-contractors. Bring necessary changes in a timely manner.
error: Content is protected !!