Leads : Appointments : Sales

GDPR Readiness Checklist

Are you GDPR compliant?

GDPR Readiness Checklist


Following various questions on this topic, and from several Clients, we’ve put together a simple checklist to help you focus on the 12 key steps towards GDPR compliance.

  1. Awareness: Do your Staff and your Clients understand a) Data Protection Act 1998 and b) GDPR additional obligations?

  2. Personal Data: Do you have a clear view of what Personal Data your organization holds?... Staff, Clients, Prospects, Suppliers…

  3. Privacy Policy: Have you updated and communicated (internally and externally) all policies and processes that relate to GDPR?

  4. Individuals’ Rights: Do your policies/procedures cater for timely deletion of personal data as well as subjects’ Right to be Forgotten?

  5. Subject Access: Do your procedures allow for timely response to Subject Access Requests for information, etc?

  6. Legal Basis: Are you clear about the legal basis for which you wish to hold (and/or continue to hold) personal data?

  7. Consent: Do you record, and can you evidence, the Consent approvals you have acquired… responsibly and lawfully?

  8. Children’s Data: Do your business processes verify Children’s ages and allow for Parental Consent accordingly?

  9. Data Breaches: Are your processes effective at detecting, investigating and notifying the ICO in the event of a Data Breach?

  10. DP Designed-in: Do your Change Management and Governance processes consider GDPR in the design stage?

  11. DP Officer: Does your organisation have a key role identified and responsible for Data Protection compliance?

  12. International: Are your international business activities under the control and jurisdiction of the correct authorising body?

As a Client (‘Data Controller’) who engages with 4Marketing (‘Data Processor’) - or with any Marketing Agency - you are probably already engaged in a project to ensure that your Organisation is compliant with the GDPR, in time for its implementation date of 25th May, 2018.  

You should also be aware of the planned implementation of the new 'ePrivacy Regulation', which is scheduled to supersede the existing ePrivacy Directive in 2019...

Feel free to give us a call if you have any questions… We’d be happy to advise you on the Regulation, particularly as it applies to the world of outsourced Marketing and TeleMarketing.  Call us on 023 94 00 31 61.