For small businesses who feel overwhelmed with all the attention and threatening articles, here is a very easy GDPR-compliance checklist you can go through.
The EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years. This policy directive was adopted in May 2016 to make Europe fit for the digital age. How does it affect small businesses?
The GDPR brings a lot of extra work for organizations that are considered to process Personal Data. For small businesses who feel overwhelmed with all the attention and threatening articles, here is a very easy GDPR-compliance checklist you can go through.
The implications for employers of GDPR are many and varied and the responsibility lies with each business owner to ensure that they are compliant. With this in mind Sara Marrett from HR Department will help you understand the key facts to help you prepare for this big change
Marketing data management | The new way to think about your dataLaurence
Organisations are at a place where opportunity beckons but, all too often, the gesture is obscured by the confusion that surrounds data compliance. Instead of seeing the benefits that can be found in the regulations, such as the General Data Protection Regulation (GDPR), that are being introduced, companies take a retracted view that turns inward, seeing only where these policies cause hindrance rather than the value they can add.
GDPR Data Subject Rights - What You Need to KnowPiwik PRO
The General Data Protection Regulation (GDPR) comes into effect on May 25th 2018 and introduces a list of data subjects’ rights to protect internet users. Learn how data controllers can ensure these rights and avoid severe fines.
The infographic was created by the experts from Piwik PRO.
For small businesses who feel overwhelmed with all the attention and threatening articles, here is a very easy GDPR-compliance checklist you can go through.
The EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years. This policy directive was adopted in May 2016 to make Europe fit for the digital age. How does it affect small businesses?
The GDPR brings a lot of extra work for organizations that are considered to process Personal Data. For small businesses who feel overwhelmed with all the attention and threatening articles, here is a very easy GDPR-compliance checklist you can go through.
The implications for employers of GDPR are many and varied and the responsibility lies with each business owner to ensure that they are compliant. With this in mind Sara Marrett from HR Department will help you understand the key facts to help you prepare for this big change
Marketing data management | The new way to think about your dataLaurence
Organisations are at a place where opportunity beckons but, all too often, the gesture is obscured by the confusion that surrounds data compliance. Instead of seeing the benefits that can be found in the regulations, such as the General Data Protection Regulation (GDPR), that are being introduced, companies take a retracted view that turns inward, seeing only where these policies cause hindrance rather than the value they can add.
GDPR Data Subject Rights - What You Need to KnowPiwik PRO
The General Data Protection Regulation (GDPR) comes into effect on May 25th 2018 and introduces a list of data subjects’ rights to protect internet users. Learn how data controllers can ensure these rights and avoid severe fines.
The infographic was created by the experts from Piwik PRO.
What does GDPR laws mean for Australian businessesiFactory Digital
Chances are that you’ve noticed a deluge of emails and app updates all centred around privacy updates. It’s not that every company on Earth has simultaneously grown very concerned about the issue. Instead, it’s to make sure that they meet the requirements for GDPR compliance.
https://ifactory.com.au/news/what-does-gdpr-laws-mean-australian-businesses
The European Union will introduce the new General Data Protection Regulation for implementation May 2018. This makes it a legal requirement on all businesses owners to comply with the new regulations or face heavy fines. This will still apply to UK companies after Brexit.
Date: 15th November 2017
Location: AI Lab Theatre
Time: 16:30 - 17:00
Speaker: Elisabeth Olafsdottir / Santiago Castro
Organisation: Microsoft / Keyrus
Teleran Data Protection - Addressing 5 Critical GDPR RequirementsChris Doolittle
Learn how to quickly and cost effectively meet 5 critical General Data Protection Regulation (GDPR) requirements for structured data with Teleran's Data Protection and Compliance solution. Teleran's solution addresses these key GDPR mandates: Impact Assessments, Purpose Limitation, Data Security, Accountability and Documentation, and Breach Notification. Teleran’s software solution delivers integrated sensitive data discovery, audit and controls. There is little time left to address GDPR. Flexibility, automation, integration and flexibility are key to getting there quickly and cost efficiently.
GDPR will change the way marketers communicate with prospects and customers. In this slide deck, we share everything you need to know about GDPR and how you as a marketer can prepare for GDPR compliance.
You Can't Use e-mail after next May - What Are You Going To Do?Richard Angliss
The General Data Protection Regulation (GDPR) next May bans sending and receiving customer information in e-mails - that means no names, addresses, phone numbers, documents etc
GDPR Compliance Software | General Data Protection Regulation (GDPR) DashboardCorporater
GDPR governance & DPO dashboard:
Corporater offers an all-in-one actionable dashboard solution that gives your Data Protection Officer complete oversight into your compliance activities related to GDPR.
Corporater GDPR integrates with your existing systems to provide a complete overview of all your data protection activities:
1. Implement GDPR projects and activities
2. Monitor GDPR metrics
3. Audit GDPR articles
To know more, visit: https://corporater.com/en/business-solutions/governance-risk-and-compliance/gdpr-software/
BigID Data Sheet: Smart Data Labeling and TaggingBigID Inc
Effective data protection enforcement depends on understanding what data needs to be protected - especially as mandates like the EU GDPR and pending California Consumer Privacy Act add privacy protection requirements. Through smart labeling that leverages machine learning for discovery and classification and identity correlation for privacy understanding, BigID enables smarter, more accurate and automated policy enforcement actions. Customers can optimize their existing enforcement investments to take smarter policy actions and address new
Nadia Kosak Astrid
Siteimprove
Partner Manager
The deadline for GDPR compliance is May 25, 2018. Are you an eZ Platform editor? Are you ready for GDPR? Learn how to use the Siteimprove plugin for eZ Platform to support your GDPR compliance process.
Addressing analytics, data warehouse and Big Data challenges beyond database ...Chris Doolittle
The biggest challenge of managing analytics, data warehouses and Big Data is keeping up with dynamic business demands:
Rapidly changing usage patterns
Growing data variety, volumes and complexity
Increasingly resource intensive visualization tools
And expanding compliance and security demands
At the same time, business executives are expecting more value from analytics, data warehouses and big data. This presentation, by Tim Gorman, Oracle ACE Director and information management expert, demonstrates how companies leverage Teleran’s innovative Usage Analytics and Management Controls to get more business value from their analytics, data warehouses, and big data. Tim presents real-life case studies on how Teleran’s unique software addresses usage issues that can not be resolved by traditional database monitoring solutions. See this presentation and learn how organizations:
Establish a holistic picture of activity to quickly troubleshoot and resolve usage issues that you can’t visualize with database oriented tools only
Track what data is important to the business to ensure productive applications and resource efficient use
Leverage usage metrics from the user, application and query/report perspective to effectively communicate with, manage, and succeed with your business users
Identify and automatically address wasteful user behavior and inefficient analytical and application use
GDPR ASAP: A Seven-Step Guide to Prepare for the General Data Protection Regu...ObservePoint
This guide will educate you on what GDPR is, who it applies to and what you should do about it in seven steps. As you read through, make some notes about who you feel should be responsible for each step so you can get the ball rolling with each team member.
After more than four years of discussion, the new EU data protection framework has finally been adopted. Ever since the European Commission first proposed its
text back in 2012, this legislation has attracted a huge amount of attention. But what is the General Data Protection Regulation (GDPR), why was it created, what are
some of the key aspects and how does it affect your company?
Data privacy awareness is on the rise. Users become more and more concerned with how online service providers collect and protect their personal information. And so should you. Discover how to balance the risks and benefits of collecting data in the age of customer centricity.
What is data protection and why it is important for businessSameerShaik43
Data protection, known as information privacy, is a process of securing data from the loss, corruption, or compromise. There are key pieces of information that need to be protected and stored by businesses. The data includes customer details, transaction details, data collection, loyalty schemes, and employee records.
Designed to empower all EU citizens to take greater control of their data, the General
Data Protection Regulation (GDPR) will reshape the way organisations worldwide (who
process data from the EU) approach data governance, data protection and privacy.
This paper summarises a seven-step practical approach to achieving GDPR compliance
with your CRM and marketing systems.
What does GDPR laws mean for Australian businessesiFactory Digital
Chances are that you’ve noticed a deluge of emails and app updates all centred around privacy updates. It’s not that every company on Earth has simultaneously grown very concerned about the issue. Instead, it’s to make sure that they meet the requirements for GDPR compliance.
https://ifactory.com.au/news/what-does-gdpr-laws-mean-australian-businesses
The European Union will introduce the new General Data Protection Regulation for implementation May 2018. This makes it a legal requirement on all businesses owners to comply with the new regulations or face heavy fines. This will still apply to UK companies after Brexit.
Date: 15th November 2017
Location: AI Lab Theatre
Time: 16:30 - 17:00
Speaker: Elisabeth Olafsdottir / Santiago Castro
Organisation: Microsoft / Keyrus
Teleran Data Protection - Addressing 5 Critical GDPR RequirementsChris Doolittle
Learn how to quickly and cost effectively meet 5 critical General Data Protection Regulation (GDPR) requirements for structured data with Teleran's Data Protection and Compliance solution. Teleran's solution addresses these key GDPR mandates: Impact Assessments, Purpose Limitation, Data Security, Accountability and Documentation, and Breach Notification. Teleran’s software solution delivers integrated sensitive data discovery, audit and controls. There is little time left to address GDPR. Flexibility, automation, integration and flexibility are key to getting there quickly and cost efficiently.
GDPR will change the way marketers communicate with prospects and customers. In this slide deck, we share everything you need to know about GDPR and how you as a marketer can prepare for GDPR compliance.
You Can't Use e-mail after next May - What Are You Going To Do?Richard Angliss
The General Data Protection Regulation (GDPR) next May bans sending and receiving customer information in e-mails - that means no names, addresses, phone numbers, documents etc
GDPR Compliance Software | General Data Protection Regulation (GDPR) DashboardCorporater
GDPR governance & DPO dashboard:
Corporater offers an all-in-one actionable dashboard solution that gives your Data Protection Officer complete oversight into your compliance activities related to GDPR.
Corporater GDPR integrates with your existing systems to provide a complete overview of all your data protection activities:
1. Implement GDPR projects and activities
2. Monitor GDPR metrics
3. Audit GDPR articles
To know more, visit: https://corporater.com/en/business-solutions/governance-risk-and-compliance/gdpr-software/
BigID Data Sheet: Smart Data Labeling and TaggingBigID Inc
Effective data protection enforcement depends on understanding what data needs to be protected - especially as mandates like the EU GDPR and pending California Consumer Privacy Act add privacy protection requirements. Through smart labeling that leverages machine learning for discovery and classification and identity correlation for privacy understanding, BigID enables smarter, more accurate and automated policy enforcement actions. Customers can optimize their existing enforcement investments to take smarter policy actions and address new
Nadia Kosak Astrid
Siteimprove
Partner Manager
The deadline for GDPR compliance is May 25, 2018. Are you an eZ Platform editor? Are you ready for GDPR? Learn how to use the Siteimprove plugin for eZ Platform to support your GDPR compliance process.
Addressing analytics, data warehouse and Big Data challenges beyond database ...Chris Doolittle
The biggest challenge of managing analytics, data warehouses and Big Data is keeping up with dynamic business demands:
Rapidly changing usage patterns
Growing data variety, volumes and complexity
Increasingly resource intensive visualization tools
And expanding compliance and security demands
At the same time, business executives are expecting more value from analytics, data warehouses and big data. This presentation, by Tim Gorman, Oracle ACE Director and information management expert, demonstrates how companies leverage Teleran’s innovative Usage Analytics and Management Controls to get more business value from their analytics, data warehouses, and big data. Tim presents real-life case studies on how Teleran’s unique software addresses usage issues that can not be resolved by traditional database monitoring solutions. See this presentation and learn how organizations:
Establish a holistic picture of activity to quickly troubleshoot and resolve usage issues that you can’t visualize with database oriented tools only
Track what data is important to the business to ensure productive applications and resource efficient use
Leverage usage metrics from the user, application and query/report perspective to effectively communicate with, manage, and succeed with your business users
Identify and automatically address wasteful user behavior and inefficient analytical and application use
GDPR ASAP: A Seven-Step Guide to Prepare for the General Data Protection Regu...ObservePoint
This guide will educate you on what GDPR is, who it applies to and what you should do about it in seven steps. As you read through, make some notes about who you feel should be responsible for each step so you can get the ball rolling with each team member.
After more than four years of discussion, the new EU data protection framework has finally been adopted. Ever since the European Commission first proposed its
text back in 2012, this legislation has attracted a huge amount of attention. But what is the General Data Protection Regulation (GDPR), why was it created, what are
some of the key aspects and how does it affect your company?
Data privacy awareness is on the rise. Users become more and more concerned with how online service providers collect and protect their personal information. And so should you. Discover how to balance the risks and benefits of collecting data in the age of customer centricity.
What is data protection and why it is important for businessSameerShaik43
Data protection, known as information privacy, is a process of securing data from the loss, corruption, or compromise. There are key pieces of information that need to be protected and stored by businesses. The data includes customer details, transaction details, data collection, loyalty schemes, and employee records.
Designed to empower all EU citizens to take greater control of their data, the General
Data Protection Regulation (GDPR) will reshape the way organisations worldwide (who
process data from the EU) approach data governance, data protection and privacy.
This paper summarises a seven-step practical approach to achieving GDPR compliance
with your CRM and marketing systems.
Wherever your business is located in the world, the GDPR will apply if you:
Offer products/services to EU citizens and/or:
Collect personal information from EU citizens
Slides to Digital Privacy in the B2B Landscape event 04/04/2017Dr Claire Trévien
Slides used at the Digital Privacy in the B2B Landscape panel on 04/04/2017 at WeWork Moorgate. The panel discussed the effects of GDPR and other new data privacy laws that are soon coming into effect, from a marketing, cyber security and legal perspective.
The event was organised by Kingpin and Passle.
This presentation was prepared to accompany my talk at Montreal All Girls Hack Night.
I think that Data and Privacy should be the foundation for all businesses moving forward to maintain a healthy Digital life for everyone.
General Data Protection Regulation plays a great role in to enforcing such acts that ensure Data Protection and Privacy of the users. GDPR is a very brief topic, but in this presentation I will share with you some core values of GDPR and some basic actions that you can take to make your business compliant to GDPR.
Note: This is not a legal advice. This information is collected from different resources. All the guides and resources used in the presentation are listed below.
Important Definitions and Notes from the presentation:
GDPR
The General Data Protection Regulation (GDPR) (EU) is a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA).
If you are in the UK and need to check that you will comply with the General Data Protection Regulations when they come into force in May 2018, this checklist might help. Developed for use in my own business it is shared without liability. Please use it wisely to start the process of complying.
For more information on making your processes and your legal documents simple, especially if you are in the UK construction industry, go to http://500words.co.uk/
GDPR Explained in Simple Terms for Hospitality OwnersBoostly
GDPR can come off as being overly complicated. So I've created this to make everything simple and so you can understand everything you need to as an independent hospitality owner!
NO! If your email marketing complies with the new regulation, Outbound Marketing can still exist. Outbound Marketing has long been there with direct marketing and the data purchase list.
The GDPR changes are fast approaching and time is running out to prepare yourself and your data. GDPR is an important topic that you will need to know inside out for your business and marketing to succeed. CommuniGator can help you get fully prepared for its arrival.
We are here to answer YOUR GDPR questions to arm you with everything you need to ensure you are compliant come May 2018.
Find out how the new data law will affect your B2B marketing abilities. We answer all your questions with a Q&A section from our experts in the field – so you can really get to grips with the changes.
We cover:
- The good the bad and the ugly of GDPR
- Your own checklist to becoming compliant
- How to get your existing data ‘double opted-in’
- Answers to your burning questions!
GDPR is one of the hottest topics in business and especially direct marketing.
Starting on 25th May 2018, all businesses, B2B or B2C must be ready to handle data in a GDPR compliant fashion or you could face hefty fines.
How will GDPR affect Direct Mail marketingNigel Birch
GDPR stands for General Data Protection Regulations and when it comes into play on the 25th May 2018, the changes to the governance of data will have substantial consequences on all businesses. Fundamentally, GDPR will determine how businesses do business, and change how data is managed, protected and administered.
How will GDPR affect Direct Mail Marketing?Birch Print
One of the biggest news stories to hit the headlines recently is GDPR. Everyone seems to be talking about it and with penalties of up to 4% of worldwide revenue for failing to comply, it’s clear that businesses in the UK will be substantially affected. What the issue is at the moment, is that guides and resources on the matter seem to be creating more questions than answers.
Here's a short presentation on the GDPR, first presented at the Morning Advertiser MA500 event in Edinburgh on 14th September. This is an overview regulations.
This may feel like a long way off but the obligations on businesses are onerous and the time to prepare is now. The hefty fines that GDPR promises will come into force immediately so businesses are being given plenty of warning to put procedures in place to ensure they are compliant with the regulation. Read this essential guide to getting GDPR ready.
One of the most important aspects of GDPR compliance is your Privacy Policy.
The GDPR has increased requirements for Privacy Policies, as well as for getting consent for your Policy terms. Learn more in this informative presentation.
Read our related blog post here: https://termsfeed.com/blog/gdpr-privacy-policy/
Synthetic Fiber Construction in lab .pptxPavel ( NSTU)
Synthetic fiber production is a fascinating and complex field that blends chemistry, engineering, and environmental science. By understanding these aspects, students can gain a comprehensive view of synthetic fiber production, its impact on society and the environment, and the potential for future innovations. Synthetic fibers play a crucial role in modern society, impacting various aspects of daily life, industry, and the environment. ynthetic fibers are integral to modern life, offering a range of benefits from cost-effectiveness and versatility to innovative applications and performance characteristics. While they pose environmental challenges, ongoing research and development aim to create more sustainable and eco-friendly alternatives. Understanding the importance of synthetic fibers helps in appreciating their role in the economy, industry, and daily life, while also emphasizing the need for sustainable practices and innovation.
Welcome to TechSoup New Member Orientation and Q&A (May 2024).pdfTechSoup
In this webinar you will learn how your organization can access TechSoup's wide variety of product discount and donation programs. From hardware to software, we'll give you a tour of the tools available to help your nonprofit with productivity, collaboration, financial management, donor tracking, security, and more.
How to Make a Field invisible in Odoo 17Celine George
It is possible to hide or invisible some fields in odoo. Commonly using “invisible” attribute in the field definition to invisible the fields. This slide will show how to make a field invisible in odoo 17.
Francesca Gottschalk - How can education support child empowerment.pptxEduSkills OECD
Francesca Gottschalk from the OECD’s Centre for Educational Research and Innovation presents at the Ask an Expert Webinar: How can education support child empowerment?
Biological screening of herbal drugs: Introduction and Need for
Phyto-Pharmacological Screening, New Strategies for evaluating
Natural Products, In vitro evaluation techniques for Antioxidants, Antimicrobial and Anticancer drugs. In vivo evaluation techniques
for Anti-inflammatory, Antiulcer, Anticancer, Wound healing, Antidiabetic, Hepatoprotective, Cardio protective, Diuretics and
Antifertility, Toxicity studies as per OECD guidelines
Acetabularia Information For Class 9 .docxvaibhavrinwa19
Acetabularia acetabulum is a single-celled green alga that in its vegetative state is morphologically differentiated into a basal rhizoid and an axially elongated stalk, which bears whorls of branching hairs. The single diploid nucleus resides in the rhizoid.
The French Revolution, which began in 1789, was a period of radical social and political upheaval in France. It marked the decline of absolute monarchies, the rise of secular and democratic republics, and the eventual rise of Napoleon Bonaparte. This revolutionary period is crucial in understanding the transition from feudalism to modernity in Europe.
For more information, visit-www.vavaclasses.com
Introduction to AI for Nonprofits with Tapp NetworkTechSoup
Dive into the world of AI! Experts Jon Hill and Tareq Monaur will guide you through AI's role in enhancing nonprofit websites and basic marketing strategies, making it easy to understand and apply.
Operation “Blue Star” is the only event in the history of Independent India where the state went into war with its own people. Even after about 40 years it is not clear if it was culmination of states anger over people of the region, a political game of power or start of dictatorial chapter in the democratic setup.
The people of Punjab felt alienated from main stream due to denial of their just demands during a long democratic struggle since independence. As it happen all over the word, it led to militant struggle with great loss of lives of military, police and civilian personnel. Killing of Indira Gandhi and massacre of innocent Sikhs in Delhi and other India cities was also associated with this movement.
Instructions for Submissions thorugh G- Classroom.pptxJheel Barad
This presentation provides a briefing on how to upload submissions and documents in Google Classroom. It was prepared as part of an orientation for new Sainik School in-service teacher trainees. As a training officer, my goal is to ensure that you are comfortable and proficient with this essential tool for managing assignments and fostering student engagement.
June 3, 2024 Anti-Semitism Letter Sent to MIT President Kornbluth and MIT Cor...Levi Shapiro
Letter from the Congress of the United States regarding Anti-Semitism sent June 3rd to MIT President Sally Kornbluth, MIT Corp Chair, Mark Gorenberg
Dear Dr. Kornbluth and Mr. Gorenberg,
The US House of Representatives is deeply concerned by ongoing and pervasive acts of antisemitic
harassment and intimidation at the Massachusetts Institute of Technology (MIT). Failing to act decisively to ensure a safe learning environment for all students would be a grave dereliction of your responsibilities as President of MIT and Chair of the MIT Corporation.
This Congress will not stand idly by and allow an environment hostile to Jewish students to persist. The House believes that your institution is in violation of Title VI of the Civil Rights Act, and the inability or
unwillingness to rectify this violation through action requires accountability.
Postsecondary education is a unique opportunity for students to learn and have their ideas and beliefs challenged. However, universities receiving hundreds of millions of federal funds annually have denied
students that opportunity and have been hijacked to become venues for the promotion of terrorism, antisemitic harassment and intimidation, unlawful encampments, and in some cases, assaults and riots.
The House of Representatives will not countenance the use of federal funds to indoctrinate students into hateful, antisemitic, anti-American supporters of terrorism. Investigations into campus antisemitism by the Committee on Education and the Workforce and the Committee on Ways and Means have been expanded into a Congress-wide probe across all relevant jurisdictions to address this national crisis. The undersigned Committees will conduct oversight into the use of federal funds at MIT and its learning environment under authorities granted to each Committee.
• The Committee on Education and the Workforce has been investigating your institution since December 7, 2023. The Committee has broad jurisdiction over postsecondary education, including its compliance with Title VI of the Civil Rights Act, campus safety concerns over disruptions to the learning environment, and the awarding of federal student aid under the Higher Education Act.
• The Committee on Oversight and Accountability is investigating the sources of funding and other support flowing to groups espousing pro-Hamas propaganda and engaged in antisemitic harassment and intimidation of students. The Committee on Oversight and Accountability is the principal oversight committee of the US House of Representatives and has broad authority to investigate “any matter” at “any time” under House Rule X.
• The Committee on Ways and Means has been investigating several universities since November 15, 2023, when the Committee held a hearing entitled From Ivory Towers to Dark Corners: Investigating the Nexus Between Antisemitism, Tax-Exempt Universities, and Terror Financing. The Committee followed the hearing with letters to those institutions on January 10, 202
1.4 modern child centered education - mahatma gandhi-2.pptx
Swift guide to GDPR
1. Imo’s common sense guide to GDPR – the two pager
What is GDPR?
The new EU general data protection law coming into force in May 2018. It gives
more rights to individuals which will mean charities, clubs and small businesses
need to review their procedures and make some changes. However, it’s not
actually that big a change compared to the data protection you should already
be performing. Which you probably aren’t.
Some practical examples of why you need to plan this
• If you send out an email to a group of people, do not put all the email
addresses into the cc: field. Use the bcc (blind copy) field to enter in the list of
emails, unless you can show that all those people have given you explicit
consent to reveal their email addresses to all the other people.
• Data has to be kept safe. Is yours backed up, encrypted? Do you have those
details listed somewhere in a data security policy or procedure? Is one of
your backups held offsite in case of fire, theft or flood?
• Is there a data privacy policy on your website? And a cookies agreement?
• Do you have a form for new customers or users? It must request explicit
consent for their data to be held, explain what it’s held for, who by and for
how long, and who people contact if they don’t agree.
• Do you ever text customers notifications or reminders? You must inform
customers or users that you are going to do this, and give an opt-out option
whenever you use it.
• If your premises were broken into and a computer stolen that holds personal
data, you would need to inform the data protection commissioner within 72
hours unless it is anonymized OR encrypted. Do you know what’s on each
computer, and whether it’s encrypted?
• If you receive a request from a data subject who wants to get a copy of all the
data you hold on them and then have it deleted, could you do this within 30
days and free of charge? How would you be sure you’d found all their data?
That’s the law from May.
• What do you know about your Internet security? Do you have a firewall and
malware protection? Is access to data protected eg by passworded accounts?
• How can you be sure all your staff are using strong computer passwords?
• If you sell or pass on an old computer no longer in use, what is your
procedure to ensure there is no personal data accessible from that computer
in future?
• Do you use Paypal to receive payments? This company has restrictive data
policies as part of its terms and conditions that imply customer information
may be passed to third parties in a jurisdiction beyond the EU in a way which
may not comply with GDPR.
2. Checklist
• Inventory your data
• Record who has access (online and paper) to the data
• Check your data security – backups, online, network
• Figure out who you need to “repermission” regarding their data by May 2018
• Do you need to appoint a data protection officer? (Probably not.)
• Who is going to be responsible for data protection in the organization?
• Revise direct marketing procedures
• Revise website privacy and cookies policy
• Revise your data protection procedures, including subject data access
requests
• Make everyone in the organization aware of the changes and how they can
contribute
• Keep checking for any changes coming up to May 2018 such as age for
parental consent where children are involved.
The longer version
I have a 14-page version with action lists and templates available free of charge at
https://www.slideshare.net/imogenbertin/gdpr-the-imo-guide-draft-2
This infographic from the gdprcoalition.ieis also helpful.