2. FIND OUT WHERE YOU STAND
Companies are in various states of GDPR compliance, ranging from none at all to complete adherence. Before embarking more deeply on your GDPR journey, find out where you stand right now. What are your policies and practices regarding data governance? Are they presented to the outside world in an open and transparent way?
If there is already data governance documentation, review this and use it as a starting point for further work. Under GDPR, this kind of documentation is mandatory. This is all part of a data protection assessment, which you can learn more about here.
3. WHAT DATA DO YOU HAVE?
4. POSTING PRIVACY POLICIES
5.CREATE OR FINE-TUNE CONSENT PROCEDURES
6. DEALING WITH SUBJECT ACCESS REQUESTS (SAR)
7. BUILD CCPA STAFF INCLUDE DATA PROTECTION LEADS
8. DATA BREACH REPORTING
9. KNOW WHAT RIGHTS DATA SUBJECTS HAVE
10. CONTINUALLY UPDATE YOUR CCPA COMPLIANCE PLAN
It is clear that shops facing GDPR compliance need a plan that includes best practices
and policies. This is just the start. Regularly review the plan to insure it is current with your organization’s changes or modifications made to the regulations.