The GDPR comes with notable upheaval for all European data protection legislations. Introducing rigorous obligations and rules, two innovative approaches particularly emerge from the new provisions: the data protection impact assessment (DPIA) and the accountability principle.
In order to ensure compliance and efficiency when dealing with data subjects’ rights, data controllers will have to continuously improve their processes and keep track of all carried out measures.
While a growing number of organizations are undertaking data mining approaches, personal data protection should not be neglected. In case of violation of the GDPR’s requirements, fines may be carried up to 4% of an organization’s global turnover! Furthermore, data processors will quickly have to adjust to the new rules, their obligations being firmly strengthened by the regulation.
But what is the process of creating and implementing a GDPR action plan for compliance? Devoteam shares its thoughts and recommendations on the matter in this white paper free for you to download.
The document's goal is to provide a method and answer questions such as:
- How is an action plan for compliance to be initiated?
- What are the different stages of implementation?
- What does the accountability principle stand for in practice?
- How is a Data Protection Impact Assessment to be conducted?