GDPR Beyond EU

“GDPR focuses on data belonging to EU nationals, hence it is critical for organisations to undertake a detailed data discovery exercise to understand the flow of EU national data across their IT systems and physical storage landscape,” explains Austin Kuruvilla, GDPR Consultant, Paladion. As a GDPR consultant, Paladion recommends that organisations undertake a phase-wise approach, including Data Discovery and Data Protection Impact Assessment (DPIA), Control Framework Design and Roadmap Preparation, Control Implementation and Internal audit. “The internal audit allows organisations to assess the final level of compliance with regards to GDPR requirements,” adds KuruvillaRead more