In this episode of InfoSec Insider – Talk DP, Stuart Skelly, Senior Data Protection Consultant at URM, provides some hints and tips on how to achieve and maintain compliance with the General Data Protection Regulation (GDPR), with a particular focus on the key documentation organisations need to have in place to comply.  Stuart leverages over 25 years of experience to discuss: 

• The importance of maintaining documented evidence of your GDPR compliance under the ‘accountability’ principle 

• Some of the key compliance documentation you need to produce, including records of processing activities (RoPAs) data protection impact assessments (DPIAs), privacy notices and personal data retention policies  

• What information you will need to include in these documents  

• When these documents are mandatory and whether any organisations are exempt from producing them.  

Learn more about this topic: https://www.urmconsulting.com/blog/10-top-tips-for-achieving-gdpr-compliance  

If you enjoyed this episode of InfoSec Insider, you can leave us a rating and review here:   https://ratethispodcast.com/infosecinsider  

You can find more episodes of InfoSec Insider here:   https://urmconsulting.com/podcasts  

Brought to you by URM, the UK’s leading information and cyber security specialists.