Performing a GDPR security audit, defining an action plan tailored to your specific needs in terms of personal data protection. This step allows you to determine your level of GDPR compliance.
What is the approach to be taken to achieve GDPR compliance ?
All structures (private companies, public companies, associations, …) handling personal data concerning European citizens must comply with the GDPR.
Here is the procedure to follow to start your GDPR compliance :
- Conducting a GDPR audit
- Create a data log : this log keeps track of the entire compliance process, so it is essential to keep it up to date as you move forward with your GDPR compliance
- Organize the storage of your data: structuring and rationalizing them while ensuring the level of data security.
- Assessing and documenting the risks of data collection on the privacy of data subjects by carrying out a Privacy Impact Assessment (PIA)