Online-Test for GDPR Compliance published
by Michael Kuska, LL.M., LL.M., Michael Kuska, LL.M., LL.M.
Published: December, 2017
Submission: December, 2018
The Bavarian Data Protection Authority ("BayLDA") has published an online test on its website that can be used by companies to determine how well they are prepared on key topics of the General Data Protection Regulation ("GDPR").
The GDPR will apply directly in the member states of the European Union with effect from May 25, 2018. This will result in significant changes to data protection law in many areas. Accordingly, companies that process personal data are also required to adapt their respective processing activities as well as systems, procedures, processes and documentation of relevance under data protection law, to the new standards within the remaining 6 months. Failure to comply with the requirements of the GDPR, or failure to do so correctly, can result in fines being imposed by the data protection supervisory authorities.
After sending companies a "Questionnaire for GDPR implementation on May 25, 2018" earlier this year, the BayLDA has now also published an online test on its website (available in English as well) under the heading "Road to GDPR - Self-assessment". This is intended as a tool that enables companies to determine to what extent they still need to adapt in terms of implementing the requirements of the GDPR. Specifically, the online test includes a list of 28 questions on central GDPR topics. After answering all questions, participants receive an evaluation of the responses with further explanations, as well as an overall assessment of their compliance status.
SUMMARYParticipation in the test is particularly advisable for companies that have not yet made any adaptations to the requirements of the GDPR. In addition, the online test can also be helpful for companies that have already started or even concluded corresponding GDPR implementation projects, in order to obtain an initial general assessment in this respect.
Given the increased activities of the BayLDA with regard to the GDPR, it is to be expected that the BayLDA will carry out targeted data protection reviews as from May 25, 2018. These reviews will most likely concern the requirements set out in the questionnaire as well as in the online test. At the same time, data protection reviews by the respective data protection supervisory authorities can also be expected in other German Federal States with effect from May 25, 2018.
- Not All Disruptors are Unicorns
- ‘Tis the Season to Be on Heightened Alert: FBI Warns of Targeted Cyber Attacks
- "Text Me?" Proposed Electronic Disclosure Rule Would Allow Greater Flexibility for Retirement Plans
- New Government Regulation on Organization of Electronic Systems and Transactions
WSG Member: Please login to add your comment.