FREE GDPR Helpline
Call +44 (0) 208 133 2545
Download the Accountability Roadmap for Demonstrable GDPR Compliance
The new accountability principle in Article 5(2) of the GDPR requires organisations to demonstrate compliance with the principles of the GDPR.
Article 24 sets out how organisations can do this by requiring the implementation of appropriate technical and organisational measures to ensure that organisations can demonstrate that the processing of personal data is performed in accordance with the GDPR. Nymity Research has identified 39 Articles under the GDPR that require evidence of a technical or organisational measure to demonstrate compliance and has mapped these to the Nymity Privacy Management Accountability Framework™. The result is the identification of 55 “mandatory” privacy management activities that, if implemented, may produce documentation that will help demonstrate ongoing compliance with your GDPR compliance obligations (some activities may not apply to your organisation). The document also identifies additional privacy management activities that, while not considered mandatory for demonstrating compliance with the GDPR, if implemented, may produce additional documentation to help demonstrate compliance.