EU General Data Protection Regulation (GDPR): An Implementation and Compliance Guide, Second Edition
- 3h 32m
- IT Governance Privacy Team
- IT Governance
- 2017
Now in its second edition, EU GDPR – An Implementation and Compliance Guide is a clear and comprehensive guide to this new data protection law. It explains the Regulation and sets out the obligations of data processors and controllers in terms you can understand.
Topics covered include:
- The data protection officer (DPO) role, including whether you need one and what they should do;
- Risk management and data protection impact assessments (DPIAs), including how, when and why to conduct one;
- Data subjects’ rights, including consent and the withdrawal of consent, subject access requests (SARs) and how to handle them, and data controllers and processors’ obligations;
- International data transfers to ‘third countries’, including guidance on adequacy decisions and appropriate safeguards, the EU-US Privacy Shield, international organizations, limited transfers and Cloud providers;
- How to adjust your data protection processes to comply with the GDPR, and the best way of demonstrating that compliance; and
- A full index of the Regulation to help you find the articles and stipulations relevant to your organization.
New in the second edition are:
- Additional definitions;
- Further guidance on the DPO role;
- Greater clarification on data subjects’ rights;
- Extra guidance on DPIAs;
- More detailed information on SARs;
- Clarification of consent and alternative lawful bases for processing personal data; and
- An implementation FAQ appendix.
The GDPR will have a significant impact on organizations’ data protection regimes around the world. EU GDPR – An Implementation and Compliance Guide shows you what you need to do to comply with the new law.
In this Book
-
Privacy Compliance Frameworks
-
Role of the Data Protection Officer
-
Common Data Security Failures
-
Six Data Protection Principles
-
Requirements for Data Protection Impact Assessments
-
Risk Management and DPIAs
-
Data Mapping
-
Conducting DPIAs
-
Data Subjects' Rights
-
Consent
-
Subject Access Requests
-
Controllers and Processors
-
Managing Personal Data Internationally
-
Incident Response Management and Reporting
-
GDPR Enforcement
-
Transitioning and Demonstrating Compliance
SHOW MORE
FREE ACCESS