GDPR - First measures

This information is provided free of charge. No warranty or liability is assumed for the contents contained therein, neither for completeness nor correctness. This is not a substitute for individual counselling.

  1. Commission data protection or appoint “data protection coordinator”
  2. Create a processing directory
  3. Conclude service provider contracts (in writing)
  4. Check data protection statements, contracts, company agreements, general terms and conditions, declarations of consent, websites, default settings etc.
  5. Information requirements according to §13DSGVO
  6. Data subjects’ rights: define processes and responsibilities
  7. Data misuse: Define processes and responsibilities
  8. Privacy by Design und Privacy by Default
  9. Data protection impact assessment
  10. Documentation & Training