GDPR Data Protection Checklist
Worried about how to comply with GDPR but don’t know where to start?
We’ve created this handy checklist to get you going. Being able to answer yes to every question doesn’t guarantee compliance, but it should mean that you are heading in the right direction.
If you need more detailed help or information, why not talk to us about our GDPR compliance services?
GDPR Checklist
- Do I really need this information about an individual? Do I know what I’m going to use it for?
- Do the people whose information I hold know that I’ve got it, and are they likely to understand what it will be used for?
- Am I satisfied the information is being held securely, whether it’s on paper or on a computer?
- Am I sure the personal information is accurate and up to date?
- Do I delete/destroy personal information as soon as I have no more need for it?
- Is access to personal information limited only to those with a strict need to know?
- If I use CCTV, or take photos or make videos in a work am I displaying notices telling people why I have CCTV or getting consent for those photographs or videos?
- If I want to monitor staff, for example by checking their use of email, have I told them about this and explained why?
- Where I manage any staff do my staff know their duties and responsibilities under GDPR, and are they putting them into practice?
- If I’m asked to pass on personal information, am I and my staff clear when GDPR allows me to do so?
- Would I know what to do if one of my employees or individual customers asks for a copy of the information I hold about them?
- Am I familiar with our policies for dealing with data protection, in particular our Data Protection Policy, Data Breach Policy and Data Retention Policy?
If you still have questions or aren’t sure about your responsibilities, it might be time to talk to the experts.