Hear from Mark Weston, Data Protection Officer and Compliance Manager at iovation, about some of the steps that your organization can take to ensure GDPR compliance.
“It’s really important that an organization understands the nature of the data it processes, and a data mapping exercise in order to catalog those data types and processing activities is critical in the success of implementing privacy by design. Thereafter, a privacy impact assessment allows an organization to understand the nature of the risk in the processing activities not only to the organization but also to the individuals. It’s important that an organization understands how long it retains data for, has fixed retention policies, has adequate security, and ensures that the data that’s being processed is purely for the purposes that it was collected for, and isn’t used outside of that scope.”
For more information, check out our GDPR compliance page.