Nymity Research has identified 39 articles under the GDPR that require evidence of a technical or organizational measure to demonstrate compliance and has mapped these to the Nymity Privacy Management Accountability Framework. The result is the identification of 55 “primary” technical and organizational measures that, if implemented, may produce documentation that will help demonstrate ongoing compliance with your GDPR compliance obligations. The document also identifies additional technical and organizational measures that, while not considered mandatory for demonstrating compliance with the GDPR, if implemented, may produce additional documentation to help demonstrate compliance.