The General Data Protection Regulation (GDPR) sets requirements for how organisations handle personal data.
The GDPR requires organisations to establish a privacy policy and take measures to protect the data of customers, employees, and other parties.
Measure:
Ensure you have insight into the personal data you process and the associated risks.
Measure:
Develop a privacy policy in which employees can read all about data processing and compliance with procedures.
Measure:
Teach your team everything about data security and privacy protection with a cyber security awareness e-learning from Arda. This ensures your employees can recognise privacy risks and understand how to report them.
Measure:
Ensure proper procedures are in place to correctly handle data requests from data subjects. They may request access to, correction, or deletion of their data.
Measure:
Set up procedures for detecting, reporting, and following up on data breaches. The GDPR requires that a data breach be reported to the Data Protection Authority within 72 hours.
Measure:
Apply 'privacy by design' and 'privacy by default' to secure personal data
by default across all your organisation’s processes and systems.
Privacy by design means considering privacy from the early stages
of product and service development.
Privacy by default means offering systems and products with the highest
possible privacy settings by default.
Is your organisation not yet GDPR-compliant and could use some help? Then discover Arda's GDPR training.
