Documents related to 'GDPR data breach policy and response plan'
Order by:
GDPR letter notifying personal data breachAs well as notifying the Information Commissioner's Office (ICO), certain personal data breaches must also be notified to affected data subjects. Your notification to them must, as a minimum, describe the natu... Read more
13 Sep 2018
GDPR data protection policyOur data protection policy statement reiterates the important data protection principles set out in the UK GDPR, outlines out how you intend to comply with them and clarifies what rights and obligations an employee has both... Read more
11 Feb 2022
GDPR privacy notice for job applicantsThe UK GDPR sets out a list of detailed information that must be included in a privacy notice. Our privacy notice complies with these requirements.Privacy notice requirementsA compliant privacy notice for the pro... Read more
11 Feb 2022
GDPR data protection impact assessmentA data protection impact assessment is required where a new type of processing is likely to result in a high risk to the rights and freedoms of data subjects. Use our document as your starting point.What's a DPIA?... Read more
12 Apr 2019
GDPR privacy notice for staffThe UK GDPR sets out a list of detailed information that must be included in a privacy notice. Our privacy notice complies with this.Privacy notice requirementsA compliant privacy notice for the processing of personal dat... Read more
11 Feb 2022
GDPR personal data breaches registerThe UK GDPR requires you to document all personal data breaches, whether they're notifiable to the Information Commissioner's Office (ICO) or not. Use our register to do this.Mandatory registerUnder the UK GDPR, you ... Read more
09 Nov 2018
GDPR employee data processing checklistOur checklist sets out the various tasks you'll need to undertake to ensure UK GDPR compliance. Whilst some involve producing documents, others are geared towards checking your current processing operations and t... Read more
27 Mar 2018
GDPR erasure of data response letterYou can use our letter to set out your reply to an individual's request, made under the UK GDPR, for erasure of some or all of their personal data that you hold about them. Erasure of personal dataWhere any of the g... Read more
09 Jan 2020
Bring your own device policyWith the rise of the bring your own device (BYOD) culture, use our BYOD policy to set your rules on employees using their own personal mobile devices to access your IT systems for work purposes. Be particularly alive to se... Read more
14 Oct 2022
