GDPR SELF ASSESSMENT QUESTIONNAIRE

The General Data Protection Regulation (GDPR) took effect on 25 May 2018. CyberSecOp has been helping organizations prepare and implement the significant changes in policies, practices, and procedures required to meet the new and enhanced privacy obligations.

GDPR Questionnaire

GDPR Questionnaire. Have you missed the General Data Protection Regulation deadline of 25 May 2018? The GDPR questionnaire should take 5 to 10 minutes to complete.

Self Assessement GDPR Questionnaire

Name

First Name

Last Name

Email Address

Company Name

Have you appointed a Data Protection Officer (DPO)?

Implementation of GDPR measures will, in some cases, require the appointment of a Data Protection Officer. Organisations will have additional obligations and there will be changes that impact internal accountabilities and contracts. Where there is insufficient need for an internal DPO, some organisations may choose to employ the services of an external Data Protection Officer.

Have your security personnel received training or instruction on the GDPR?

Software alone cannot sufficiently counter all threats to data protection. Security personnel training should cover data processing obligations as well as the identification of breaches and risks.

Have all staff received GDPR awareness training?

Many staff are unaware of their contribution to protecting private information and what is expected of them. The GDPR requires privacy awareness training to be provided to all employees

Have you reviewed and updated your privacy policies?

You will need to review all existing data protection and privacy policies to ensure they comply with the new requirements

Have you assessed all points of data collection to ensure that explicit consent is properly requested in each case?

The GDPR implements more stringent requirements for obtaining consent when collecting data from individuals. Data collection will have to adhere to just-in-time notification of “reason for data collection” and communicating to data subjects “how their data will be processed” and procedures for “further engagement in terms of enhanced privacy rights.

Have you prepared, documented and communicated processes for managing subject data access requests?

Have you re-assessed your suppliers and supplier contracts in relation to the GDPR?

Have you made preparations to detect and report breaches as part of a response plan?

Have you prepared data breach notification procedures for informing data subjects?

Have you prepared for regular compliance audits or reviews to identify and fix issues?

How can CyberSecOp assist you?

GDPR SELF ASSESSMENT QUESTIONNAIRE

GDPR Questionnaire

Self Assessement GDPR Questionnaire

YOUR TRUSTED SECURITY CONSULTING PARTNER

CYBER SECURITY SERVICES

Cyber Incident Response

CYBERSECURITY EXPERIENCE

CYBERSECURITY CONSULTING AWARDS AND RECOGNITIONS

INDUSTRIES

CYBER SECURITY CONSULTING

MANAGED SECURITY SERVICES