GDPR toolkit

09
Processors and joint controllers
10
Data breaches
11
Transfer
12
Data Protection Impact Assessment (DPIA)
13

Throwback Thursday

Final countdown

Your GDPR checklist

Over the past six months, you have received our practical tips and tricks to complete your GDPR toolkit. You can easily find all of them on our website.

Tomorrow is “the” day: the GDPR will apply in all its glory! Are you ready?

Below we provide you with a checklist that will assist you in the future to become and remain GDPR compliant. Check this list for every (new) processing activity and then take all necessary action:

  1. For what purposes are the personal data used?
  2. What legitimate ground can you put forward?
  3. Did you inform the data subjects (regarding the foregoing)?
  4.  Did you implement the procedures required for such data subjects to be able to  exercise their rights? Are your systems designed to this end?
  5. Are the data transferred to a third country and, if so, did you ensure the appropriate safeguards?
  6. Did you document all of the above in internal policies and procedures, and are these policies and procedures implemented in practice?
  7. Did you include the processing activity in your register?
  8. Is an impact assessment required and, if so, did you perform such an analysis and document it?
  9. Did you implement the necessary procedures for detecting and reporting data breaches?
  10. Do you need to appoint a DPO?
  11. Were appropriate agreements concluded with third parties?

What’s next?

We won’t leave you in the cold after 25 May 2018. From time to time, we will provide you with our best practices for GDPR compliance with our new Privacy Talk. We’ll be focusing on where the biggest risks for companies lie, and what they need to pay special attention to. Furthermore, we’ll provide you with ‘quick wins’. In this way, you can learn from our experience, and of course we follow any practical advice issued by the data protection authorities. They are inevitably going through a learning process just as we are.

Looking forward to our Privacy Talk, we would like to provide you with our 3 top priorities (in other words, our first-aid kit) should your company not yet be GDPR compliant:

  1. Map out all processing activities in a register of processing activities.
  2. Draft privacy statements and internal procedures for responding to requests from data subjects.
  3. Take steps to prevent data breaches, and establish internal procedures for reporting such breaches.

Please consult our website or contact one of our team members if you have questions or require more information:

Laurence Vanhyfte

senior associate
laurence.vanhyfte@contrast.law

Have a look at our 'Privacy talk'

Privacy Talk
In the Picture - May 2023

Red light for greenwashing
Books

Burgerlijk wetboek / Code civil
Articles

Een overzicht van het nieuwe groepsvrijstellingsregime voor verticale overeenkomsten.
More News & insights

Log into your account

Forgot password? Not a member yet?

Forgot password?

Request a new password by providing your email address.

Log into your account

Password reset

Enter your new password.

Password registration

Enter a password to protect you personal pages.

Activate your account

Activate your account by providing your email address.

Thanks

You will receive an email with a link to enter a new password.

Close

Thanks

Your new password is successfully saved.

Close
Close

Cookies

This website uses cookies to improve your browsing experience and to better tailor the website to your preferences. For more information about cookies and the list of cookies used on this website, see our Cookie Statement.

Below you can indicate your cookie preferences:

ON

Essential cookies are cookies that are necessary for the correct functioning of the website (e.g., to avoid overload on the website, keeping it functional and accessible). These cookies can be placed without your consent.

ON

Functional cookies are cookies that are necessary to improve your browsing experience or to provide a functionality explicitly requested by you (e.g. remembering your settings). These cookies can also be placed without your consent.

Analytical cookies are cookies that collect information about how you use the website to improve search engine hits and the functioning of the website (e.g. we see how visitors move around the website when they are using it to ensure that visitors find what they are looking for easily). These cookies are only placed if you have given your consent.

Advertising cookies are cookies that collect information about your surf and search behaviour in order to offer you personalised advertising in ad spaces on websites based on your personal interests. These cookies are only placed if you have given your consent.

Social media cookies are cookies that make it possible to share certain features from the website on social media networks (e.g. Facebook). Furthermore, these cookies collect information about your surf and search behaviour on the website in order to offer you personalised promotions and advertising about our products on these social media networks. These cookies are only placed if you have given your consent. It is possible that these social media networks also use the information they collect through these cookies for their own purposes. You can find more information about this in the privacy statements of the respective social media networks.

   

You can always change these preferences via your Cookie preferences.