This document outlines key issues for companies to consider when implementing procedures to comply with data protection laws. It discusses analyzing personal data processing, identifying responsibilities of departments, classifying files, creating internal policies, identifying third party processing, needing to transfer data between companies, required security documents, and procedure, complementary, and security/audit documents needed. The overall document provides guidance to companies on ensuring proper implementation of data protection practices.