Top 10 operational responses to the GDPR

In 2016, the Westin Research Center published a series of articles identifying our analysis of the top 10 operational impacts of the EU General Data Protection Regulation. Now, with the May 25, 2018, GDPR-implementation deadline looming, the IAPP is releasing a companion series to present common practical organizational responses that our members report undertaking in anticipation of GDPR implementation.

Find the e-book comprising the following posts here.

Part 1: Data inventory and mapping
By Rita Heimes, CIPP/E, CIPP/US, CIPM

Part 2: Lawful bases for processing
By Lee Matheson, CIPP/E, CIPP/US

Part 3: Build and maintain a data governance system
By Rita Heimes, CIPP/E, CIPP/US, CIPM

Part 4: Data protection impact assessments and data protection by default and by design
By Müge Fazlioglu, CIPP/US

Part 5: Preparing and implementing data-retention and record-keeping policies and systems
By Rita Heimes, CIPP/E, CIPP/US, CIPM

Part 6: Transparency and privacy notices
By Lee Matheson, CIPP/E, CIPP/US, CIPM

Part 7: Accommodating data subjects’ rights
By Müge Fazlioglu, CIPP/US

Part 8: Data breach and the GDPR
By Lee Matheson, CIPP/E, CIPP/US, CIPM

Part 9: Vetting and contracting with processors
By Rita Heimes, CIPP/E, CIPP/US, CIPM

Part 10: Communicating with supervisory authorities
By Müge Fazlioglu, CIPP/US