Start two tracks
It is important to know that you have to start two tracks, preferably in the following order:
- An organizational track: which processes should you adapt?
Sales and Marketing and HR are the departments most affected by the GDPR requirements, but Finance and your customer service will also have to adapt their processes.
- An IT track: which measures should you take to support the adapted processes in your organization?
And you shouldn't forget the security of your IT infrastructure, to better protect against hackers and ransomware for example. Also important: the processes you manage with your applications.
Below, find out more about how to tackle this in practice.
What are the main GDPR challenges?
According to an IDC study of 172 Scandinavian CIOs, the pitfalls lie in the right to be forgotten and data protection by design.
Because of data protection by design, we suggest you follow two tracks.
If you jump straight into ICT, you'll have incurred more costs than necessary at the end of the track, and wasted valuable time.
A good GDPR plan provides continuity
A good GDPR plan starts with the necessary analysis and builds GDPR practices in existing company processes.
Cycles of checks and adjustments ensure continuous improvement. After all, you can't think of everything in the planning phase and will undoubtedly start new initiatives.
Our practical GDPR services
To help you comply and remain compliant with the GDPR legislation, we have developed services tailored to medium-sized companies.
They focus on doing and continuously improving.