ICO are committed to helping organisations to prepare for the GDPR, which will apply in the United Kingdom from 25 May 2018. One of the main ways in which they do this is by publishing practical guidance and signposting guidance produced by other bodies. In planning this they take account of what their stakeholders tell them about what they need to know about the GDPR and their own analysis of the key differences between GDPR and the DPA.
ICO previously set out the three phases they intended for the implementation of work:
Phase 1: Familiarisation and key building blocks
Phase 2: Guidance structure and mapping, process review and initial development of associated tools
Phase 3: Bulk guidance refresh/production and review
This checklist highlights 12 steps you can take now to prepare for the General Data Protection Regulation (GDPR), click on the PDF below for full information.
For more information on how to be prepared for these changes please visit the ico.org.uk website.