Resource Center / Resource Articles / Top 10 operational responses to the GDPR
Top 10 operational responses to the GDPR
This series presents organizational responses that our members report undertaking in anticipation of GDPR implementation.
Published: March 2018
In 2016, the Westin Research Center published a series of articles identifying our analysis of the top 10 operational impacts of the EU General Data Protection Regulation. Now, with the May 25, 2018, GDPR-implementation deadline looming, the IAPP is releasing a companion series to present common practical organizational responses that our members report undertaking in anticipation of GDPR implementation.
- Part One: Data inventory and mapping
- Part Two: Lawful bases for processing
- Part Three: Build and maintain a data governance system
- Part Four: Data protection impact assessments and data protection by default and by design
- Part Five: Preparing and implementing data-retention and record-keeping policies and systems
- Part Six: Transparency and privacy notices
- Part Seven: Accommodating data subjects’ rights
- Part Eight: Data breach and the GDPR
- Part Nine: Vetting and contracting with processors
- Part Ten: Communicating with supervisory authorities