Templates
Risk Management
General Data Protection Regulation Checklist
🔒

General Data Protection Regulation Checklist

1
Identify the data processing activities within the organization
2
Identify the type of data being collected
3
Identify where the data is being stored
4
Determine who has access to the data
5
Enact security measures to protect the data
6
Approval: Security Measures
7
Establish procedure for data subject's rights
8
Create and maintain records of data processing activities
9
Perform data protection impact assessment if required
10
Design and implement a data breach notification procedure
11
Designate a data protection officer if required
12
Approval: Designation of Data Protection Officer
13
Ensure data transfers outside EU are lawful
14
Implement measures for data minimization and storage limitation
15
Ensure data is processed lawfully, fairly and transparently
16
Obtain and maintain consent where required
17
Approval: Consent Procedure
18
Ensure ongoing compliance with GDPR
19
Approval: Compliance with GDPR
20
Review and update the process as per necessary changes