Current time line for EU GDPR enforcement is set for 25 May 2018.Therefore it would be prudent for organisations to assess their GDPR readiness, in assessing organisational readiness particular attention should be paid to the right’s of the individual (i.e. data subject) and the obligations on data controllers in terms of transparency of their activities in relation to personal data and the organisation’s ability to define and embed effective agile operational practices and processes to drive key strategic corporate initiatives in terms of compliance with GDPR. This CBT is a summary of three areas that an organisation should assess their operational effectiveness based on core GDPR requirements. It is not an exhaustive list and should be seen as merely a base line so as to get an understanding of the organisation’s current status; It concentrates around three areas namely:
A. Managing Transparency;
B. Managing Rights of the Individual;
C. Managing Privacy Incidents.