This is the first in a series of 12 posts with some advice from the ICO on how to start preparing for the advent of the GDPR in May 2018.
There is no getting away from it, we are all going to have to take steps to become GDPR compliant and better sooner than later, so I will try to help out by posting the 12 steps that you need to take to become compliant, so here goes.
You should make sure that decision makers and key people in your organisation are aware that the law is changing to the GDPR. They need to appreciate the impact this is likely to have on the organisation and identify areas that could cause compliance problems under the GDPR. It would be useful to start by looking at your organisation’s risk register, if you have one.
Implementing the GDPR could have significant resource implications, especially for larger and more complex organisations. You should particularly use the first part of the GDPR’s two-year lead-in period to raise awareness of the changes that are coming. You may find compliance difficult if you leave your preparations until the last minute.
For more details go to the Information Commissioners Office here
Source: ICO – Preparing for the General Data Protection Regulation