It is just over a year until the GDPR comes into force, all organisations like you that process the personally identifiable information of EU residents will be required to abide by a number of provisions or face significant penalties.
It is essential to start planning your approach to GDPR compliance as early as you can and to gain ‘buy in’ from key people in your organisation. You may need, for example, to put new procedures in place to deal with the GDPR’s new transparency and individuals’ rights provisions. In a large or complex business this could have significant budgetary, IT, personnel, governance and communications implications.
Here is a checklist that highlights 12 steps you can take now to prepare for the GPDR.