Understand your GDPR obligations and prioritise the steps you need to take to comply.
All organisations - wherever they are in the world - that process the personal data of EU residents must comply with the GDPR (General Data Protection Regulation). Failure to do so could cost them up to €20 million or 4% of annual global turnover in fines, whichever is greater.
Now in its third edition, EU GDPR - An Implementation and Compliance Guide is a clear and comprehensive book providing detailed commentary on the Regulation.
Read this book to learn about:
The purpose of the GDPR and its key definitions;
The DPO (data protection officer) role, including whether you need one and what they should do;
Risk management and DPIAs (data protection impact assessments), including how, when and why to conduct one;
Data subjects' rights, including consent and the withdrawal of consent, DSARs (data subject access requests) and how to handle them, and data controllers and processors' obligations;
International data transfers to 'third countries', including guidance on adequacy decisions and appropriate safeguards, the EU-US Privacy Shield, international organisations, limited transfers and Cloud providers; and
How to adjust your data protection processes to comply with the GDPR, and the best way of demonstrating that compliance.
This guide is a perfect companion for anyone managing a GDPR compliance project. It explains the changes you need to make to your data protection and information security regimes and tells you exactly what you need to do to avoid severe financial penalties.
Start your compliance journey now and buy this book today.
IT Governance is a leading global provider of IT governance, risk management and compliance expertise, delivering a broad range of integrated, high-quality solutions that meet the real-world needs of an international audience. The expert team, led by Alan Calder, has substantial experience in the fields of international management system standards, cyber security, information security, IT governance, risk management, privacy, data protection and compliance. This practical experience and understanding of the background and drivers for compliance has enabled the team to turn this expert guidance into documentation templates and tools available to all organisations.