General Data Protection Regulation (GDPR)
Readiness, Assessment & Compliance

Generate a roadmap for GDPR implementation and compliance based on the answers to a series of questions/statements. The resulting customized assessment offers insights as to where your organization should focus its data protection efforts. Register now for complimentary access to this comprehensive online interface.

Inclusive of 2 expert-led presentations video-recorded at ISACA’s EuroCACS 2018, the CPE on Demand: Audit GDPR and Privacy Compliance collection provides timely, valuable insights for audit, control and risk professionals and enables you to learn on your schedule and earn up to 3 ISACA CPEs. Access to the entire collection of recordings is unlimited for a 90-day period and includes downloadable presentation decks.

Inclusive of 2 expert-led presentations video-recorded at ISACA’s EuroCACS 2018, the CPE on Demand: GDPR and Privacy Risk Management collection provides timely, valuable insights for audit, control and risk professionals and enables you to learn on your schedule and earn up to 2 ISACA CPEs. Access to the entire collection of recordings is unlimited for a 90-day period and includes downloadable presentation decks.

Inclusive of 4 expert-led presentations video-recorded at ISACA’s EuroCACS 2018, the CPE on Demand: GDPR and Data Protection Tools and Tactics collection provides timely, valuable insights for audit, control and risk professionals and enables you to learn on your schedule and earn up to 4 ISACA CPEs. Access to the entire collection of recordings is unlimited for a 90-day period and includes downloadable presentation decks.

Delivering Efficient Ongoing Assurance of Your GDPR Program

The General Data Protection Regulation (GDPR) introduces new rules that impact on the use and manipulation of personal data. Auditors have a role to play in assisting organizations adhere to these rules and maintain compliance, therefore providing continuous governance and oversight. But how confident are you that your organization could stand up to scrutiny?

GDPR Audit Program for Small and Medium Enterprises

Implementing the General Data Protection Regulation

How to Audit GDPR

GDPR Audit Program Bundle

Maintaining Data Protection and Privacy Beyond GDPR Implementation

Adopting GDPR Using COBIT 5

GDPR Data Protection Impact Assessments

ISACA Privacy Principles and Program Management

Implementing a Privacy Protection Program: Using COBIT 5 Enablers with the ISACA Privacy Principles

GDPR Readiness Survey—How Ready Are Global Enterprises for 25 May Deadline?

Keeping a Lock on Privacy: How Enterprises Are Managing Their Privacy Function

Data Privacy Audit/Assurance Program

GDPR: What Does It Mean for Your Enterprise?

Key Tips & Takeaways for GDPR Implementation Using COBIT 5

Connecting Privacy Activities with COBIT 5 Principles

Privacy Behaviors at the Individual and Organizational Level

The Seven Categories of Privacy That Every Enterprise Must Address

In this podcast, the president of the ISACA Warsaw Chapter speaks with ISACA CEO Matt Loeb, CGEIT, CAE, FASAE, about GDPR preparation and how ISACA can best serve its diverse membership.

Governance, Risk, Compliance and a Big Data Case Study

Volume 6, 2017

Governance, Risk, Compliance and a Big Data Case Study

Volume 6, 2017

Key Ingredients to Information Privacy Planning

Volume 4, 2017

Mobile Workforce Security Considerations and Privacy

Volume 4, 2017

An Ethical Approach to Data Privacy Protection

Volume 6, 2016

Delivering Personal Data Protection Compliance on a Global Scale

Volume 6, 2016

The New EU General Data Protection Regulation—Benefits and First Steps to Meeting Compliance

Volume 6, 2016

Data Protection and GAPP Alignment

Volume 4, 2015

Here Comes the GDPR. Are You Ready?

COBIT Focus newsletter

COBIT 5 and the GDPR

COBIT Focus newsletter

Using ISACA Privacy Principles for GDPR Compliance

COBIT Focus newsletter

Six Essential Data Protection and Privacy Requirements Under GDPR

@ISACA newsletter

Transitioning GDPR Preparations Into Operations

Are the British Airways and Marriott GDPR Fines a Tipping Point?

Google’s GDPR Fine Reinforces Need for Intentional Data Governance

Clouds, Codebases and Contracts – How the New Era of Privacy is Changing Third-Party Risk

GDPR – How Organizations Are Adjusting to the New Era

Addressing GDPR Challenges in Poland

GDPR Means It Is Time To Revisit Your Email Marketing Strategies

Panel: More Automated Services Needed to Support GDPR Requirements

Panel Shares Guidance in Immediate Aftermath of GDPR Deadline

Data Mapping: A Key Challenge in Achieving GDPR Compliance

Data Breach Preparation and Response in Accordance With GDPR

GDPR Can't Fix Stupid

GDPR Assessment Provides Customized Guidance

The Age of the DPO

GDPR’s Impact in Hospitality, Incorporating NIST Cybersecurity Framework Concepts

Growing Global Spotlight on Privacy, GDPR, Resonating in India

Organizations Outside the EU Must Not Overlook GDPR Requirements

Beyond GDPR Compliance – How IT Audit Can Move from Watchdog to Strategic Partner

Introducing ISACA's GDPR Implementation Guide

GDPR Working Group Hard at Work to Help You Navigate Implementation

GDPR Can Bring Major Benefits to Governance, Security Professionals

GDPR: The Role of the DPO — And How to Find One in a Competitive Landscape

GDPR: What a Data Protection Impact Assessment Is and Isn't

GDPR Compliance: One Step at a Time

ISACA Chapter President Finds Creative Ways to Spread GDPR Awareness

Teaching Smart Gadgets Privacy Manners

Dear CISOs and Legal Counsel: We Can't Wait for the Privacy Regulators

Data Privacy Day: EU's GDPR Puts a Fine Point on Privacy

Fewer Than One-Third of Companies Ready for GDPR Deadline

Need for Collaboration Among Security, Privacy Professionals Extends Beyond GDPR

GDPR and the Cloud: How to Manage Suppliers in a Changing World

Complete Guide to GDPR Compliance

No Silver Bullet for GDPR Compliance

Why GDPR Makes Even Infosec Practitioners Anxious

Opinion: GDPR Can Bring Major Benefits to Governance, Security Professionals

Opinion GDPR: What a Data Protection Impact Assessment Is and Isn't

ISACA Warns GDPR Compliance Clock is Counting Down Fast

With PCI DSS Proving too Hard, Can Australian Companies Do Better on GDPR?

Data Loss Prevention (DLP): Keeping Sensitive Data Safe

ISACA Releases Guide to GDPR Implementation as May Deadline Approaches

ISACA's EuroCACS Conference Looks to GDPR as Countdown Begins GDPR Deadline is 9 Months Aways: Are You Ready?

GDPR: Securing Data, Leading with Both Legal and Technical Expertise

GDPR Text

European Commission Data Protection Resources

GDPR Resources

The Right to Data Portability in the GDPR

GDPR Explained

Data Privacy Day Champion

International Data Privacy Day is a global celebration observed annually on 28 January. As an International Data Privacy Day champion, ISACA recognizes and supports the ideal that individuals, organizations, businesses and government all share the responsibility to be aware of privacy challenges and encourages everyone to bring information privacy into their daily thoughts, conversations and actions.