An Operational Approach to GDPR Compliance

The General Data Protection Regulation (GDPR) will come into effect in May, 2018. The Accountability Principle runs through the core of the GDPR. Specifically, Article 24 of the GDPR requires the implementation of 'appropriate technical and organisational measures' to be able to demonstrate compliance with the GDPR. Of the 99 Articles comprising the GDPR, Nymity's research has identified 39 Articles requiring evidence to demonstrate compliance.

Nymity’s GDPR Compliance Toolkit provides an operational approach to GDPR compliance which results in demonstrable GDPR compliance. The Nymity GDPR Compliance Toolkit equips privacy officers with the resources necessary to understand, assess, and develop a plan to achieve demonstrable GDPR compliance and consists of the following elements:

Getting Started Manual for GDPR Compliance

Nymity’s research has resulted in a two-step process (Baseline and Plan) to help organisations prioritise their GDPR compliance efforts. The first step is to learn to identify existing policies, procedures and other accountability mechanisms that are already providing rules and guidelines for processing personal data in your organisation that may be leveraged for GDPR compliance. Then, the second step encompasses learning how to prioritise the creation of new accountability mechanisms to create an ongoing capacity to comply and demonstrate accountability under the GDPR.

GDPR Accountability Handbook

The GDPR Accountability Handbook provides a brief annotation for each GDPR article and maps compliance obligations to the Nymity Privacy Management Accountability Framework™ through technical and organisational measures and includes examples on Accountability Mechanisms and Evidence.

GDPR Readiness Assessment 

The GDPR Readiness Assessment tool provides two sets of questions to ensure demonstrable compliance is embedded throughout your organization: one for the privacy office and one for operational and business units.

Accountability Roadmap for Demonstrable GDPR Compliance

The Accountability Roadmap enables privacy officers or those tasked with privacy management, the ability to create an operational GDPR compliance roadmap based on the accountability mechanisms appropriate for your organisation.

Nymity Privacy Management Accountability Framework™ – adapted for GDPR

The Nymity Privacy Management Accountability Framework™ (“Framework”) is a comprehensive listing of over 130 technical and organisational measures identified through Nymity’s global data privacy accountability research. The measures are structured intO 13 privacy management categories, and are jurisdiction and industry neutral. We have mapped the GPDR to the Framework to help streamline your compliance by identifying 55 technical and organisational measures that if put in place, may produce appropriate evidence to demonstrate GDPR compliance.

Download your comprehensive GDPR toolkit here: