1. Are the decision makers and key people in your organisation aware that the GDPR is coming into force on 25th May 2018 and of the impact this will have, including the risks of non-compliance?
2. Is data protection incorporated into your organisation’s risk registers?
3. Has a working group of relevant people from across your business been set up prepare for GDPR and has sufficient resource been put in place for this?
Data Protection - An Overview
Document providing a brief overview of data protection legislation.