Since 2018, the General Data Protection Regulation (GDPR) has been compulsory for any business that handles customer personal data within the European Union.
Its purpose? To ensure privacy and the responsible use of information.
Términos de uso
You can use the resource for personal or informative use with attribution to the entity red.es following our terms of use.
Since 2018, the General Data Protection Regulation (GDPR) has been compulsory for any business that handles customer personal data within the European Union.
Its purpose? To ensure privacy and the responsible use of information.
This guide helps SMEs and freelancers assess their GDPR compliance.
-
Data mapping:
() You are aware of the data you gather, its storage location, and the individuals who have access to it.
-
Legal foundation and consent:
() You have a defined legal framework.
() You acquire consent transparently.
() You keep a record of the consent obtained.
-
Clarity and entitlements:
() You have a published privacy policy.
() You grant the ability to exercise rights such as access or cancellation.
() You provide a report on the utilization of the data.
-
Security breaches:
() You employ strong passwords and enable two-factor authentication when necessary.
() You have a strategy to report breaches within 72 hours.
-
Collaboration with external partners:
() If you enter into agreements with suppliers that handle data,
you ensure that they adhere to the GDPR.
-
Internal structure:
() You have a Data Protection Officer, if needed.
() You conduct a Data Protection Impact Assessment (DPIA) for processes that are considered high-risk.
() You provide training for your employees.
Verify your GDPR compliance and safeguard your data.
Other infographics
