With just a year left until the European Union’s (EU’s) General Data Protection Regulation (GDPR) takes effect, it is time for any organization with European customers to get started with the implementation of its requirements. Most supervisory authorities in EU countries have published guidelines on how to get ready. However, when it comes to information technologies involved, it would be convenient to find additional inspiration in a well-known governance of enterprise IT (GEIT) framework. And, yes, that framework is COBIT.
It is useful to refer to an introductory document such as The GDPR and You, developed by the Office of the Data Protection Commissioner (DPC) of Ireland, to help organizations prepare for the GDPR. In order to provide clear guidance and a practical starting point, the DPC compiled a checklist to assist in moving toward 2018 and full compliance. Read More >>