The first fine was issued recently under the General Data Protection Regulation (GDPR) by the Austrian data protection regulator. Whilst relatively modest at 4,800 Euros, it shows that regulators are ready and willing to exercise their GDPR enforcement powers.
Article 24 of GDPR emphasises the need for Data Controllers to demonstrate compliance through measures to “be reviewed and updated where necessary”. This includes the implementation of “appropriate data protection policies by the controller.” This can be daunting especially for those beginning their GDPR compliance journey.
Act Now has applied its information governance knowledge and experience to create a GDPR policy pack containing essential documentation templates to help you meet the requirements of GDPR as well as the Data Protection Act 2018. The pack includes, amongst other things, template privacy notices as well as procedures for data security and data breach reporting. Security is a very hot topic after the recent £500,000 fine levied on Equifax by the Information Commissioner under the Data Protection Act 1998.
We have also included template letters to deal with Data Subjects’ rights requests, including subject access. The detailed contents are set out below:
- User guide
- Policies
- Data Protection Policy
- Special Category Data Processing (DPA 2018)
- CCTV
- Information Security
- Procedures
- Data breach reporting
- Data Protection Impact Assessment template
- Data Subject rights request templates
- Privacy Notices
- Business clients and contacts
- Customers
- Employees and volunteers
- Public authority services users
- Website users
- Members
- Records and Tracking logs
- Information Asset Register
- Record of Processing Activity (Article 30)
- Record of Special Category Data processing
- Data Subject Rights request tracker
- Information security incident log
- Personal data breach log
- Data protection advice log
The documents are designed to be as simple as possible while meeting the statutory requirements placed on Data Controllers. They are available as an instant download (in Word Format). Sequential files and names make locating each document very easy.
Click here to read sample documents.
The policy pack gives a useful starting point for organisations of all sizes both in the public and private sector. For only £149 plus VAT (special introductory price) it will save you hours of drafting time. Click here to buy now or visit or our website to find out more.
Act Now provides a full GDPR Course programme including one day workshops, e learning, healthchecks and our GDPR Practitioner Certificate.
