With the GDPR fast approaching, a lot of businesses are worried about not being GDPR compliant by the May 25th deadline. Whilst the French privacy regulator, the CNIL are willing to give some companies a respite period (as long as no major breaches or fundamental principles are breached), as of yet, no such statement has appeared from the UK’s Information Commissioners Office. With this in mind, there has been a great amount of speculation as to what is considered the most important changes to incorporate and the associated risk of not having such changes in place. However, it does appears that there is general a consensus that the following will be among the top 3:
- Record of processing activities
- Being able to comply with the new requirements around data subjects rights
Please feel free to contact us if we can assist you on not only the above, but any element around GDPR compliance.