GDPR, 5 essential steps that companies must take to adapt

We are less than four months from the direct applicability of the European Regulation on the processing of personal data. Our perception is that companies have tackled and are facing adaptation projects especially if we are talking about large structures and market sectors closely linked to the consumer world.

The perception of public bodies and SMEs, on the other hand, is a little different. The feeling is that there is still a bit of backwardness in tackling the problem, when times are now really short and tight. So, when a company decides to tackle a project of at least four months from the regulatory deadline, it is necessary to focus on essential things. Without prejudice to the need to comply fully with the legislation, some requirements are perhaps more important than others.

The advice to adapt to the Gdpr
In our opinion, we need to focus decisively on all aspects of outsourcing to consumers, citizens, interested parties, whether they are employees or otherwise, and therefore the whole issue of the revision of the forms.

On the other hand, the issue of safety is central within the European regulation, also on the basis of the register of treatments , for those who are required to do it and those who decide to have one in any case. So the issue of risk analysis and adequacy assessment of the treatments that are put in place is absolutely essential.

There are other very important requirements, such as the data protection impact assessment , which however only affects some treatments and therefore for many companies it may not be necessary.

The other topic on which to definitely think is that of the Data protection officer , then the appointment of the data protection officer.

Important because large layers of companies and public administration must have a data protection officer and therefore identify the subject who can then help conclude the construction sites that may not yet be completed on May 25, 2018, and still have a a subject that takes control of the whole issue of data processing and security, is of course of great importance.

Source: Digital Agenda

Related Posts

© PrivacyControl 2023
Privacy Control, brand di Privacycert Lombardia srl • Pass. Don seghezzi, 2, 24122 Bergamo (BG)
P.IVA 04224740169 • Cap. Sociale 10.000,00 € I.V. • REA N. 445875 • Privacy policy
Tutte le immagini e i contenuti presenti in questo sito sono coperti da copyright. Condizioni di Vendita
Supportscreen tag