GDPR-A10-01 | GDPR-A10-01: Criminal Conviction Data Processing |
GDPR-A13-01 | GDPR A13-01: Privacy Notice for Direct Data Collection |
GDPR-A14-01 | GDPR A14-01: Privacy Notice for Indirect Data Collection |
GDPR-A15-01 | GDPR Article 15: Right of Access Control |
GDPR-A16-01 | GDPR Article 16: Right to Rectification Compliance |
GDPR-A17-01 | GDPR Right to Erasure (A17-01) | Data Deletion Process |
GDPR-A18-01 | GDPR A18-01: Right to Restriction of Processing |
GDPR-A19-01 | GDPR A19-01: Data Rectification & Erasure Notification |
GDPR-A20-01 | GDPR Article 20: Right to Data Portability Compliance |
GDPR-A21-01 | GDPR Article 21: Right to Object | Compliance Guide |
GDPR-A22-01 | GDPR A22-01: Automated Decision-Making & Profiling |
GDPR-A24-01 | GDPR A24-01: Controller Responsibility & Compliance |
GDPR-A25-01 | GDPR A25-01: Data Protection by Design & Default |
GDPR-A25-02 | GDPR A25-02: Data Protection by Default | GRCWatch |
GDPR-A26-01 | GDPR A26-01: Joint Controllers Compliance |
GDPR-A28-01 | GDPR Article 28: Processor Contracts & Data Processing Agreements |
GDPR-A28-02 | GDPR A28-02: Processor Obligations & Data Processing |
GDPR-A29-01 | GDPR A.29-01: Processing Authority & Data Instructions |
GDPR-A30-01 | GDPR A30-01: Records of Processing Activities | GRCWatch |
GDPR-A30-02 | GDPR A30-02: Processor Records of Processing Activities |
GDPR-A32-01 | GDPR Article 32: Technical & Organisational Security Measures |
GDPR-A32-02 | GDPR A.32(2): Pseudonymisation & Encryption |
GDPR-A32-03 | GDPR A32-03: Ensure System Confidentiality & Resilience |
GDPR-A32-04 | GDPR A32-04: Restore Availability & Access | GRCWatch |
GDPR-A32-05 | GDPR A32-05: Security Testing & Assessment Process |
GDPR-A33-01 | GDPR A33-01: Breach Notification to Supervisory Authority |
GDPR-A34-01 | GDPR Article 34: Data Breach Notification Requirements |
GDPR-A34-02 | GDPR Article 34-02: Breach Register Documentation |
GDPR-A35-01 | GDPR Article 35: When to Conduct a DPIA |
GDPR-A35-02 | GDPR A35-02: DPIA Content Requirements Checklist |
GDPR-A36-01 | GDPR Article 36: Prior Consultation & DPIA High Risk |
GDPR-A37-01 | GDPR A37-01: Data Protection Officer Designation |
GDPR-A38-01 | GDPR A38-01: Data Protection Officer Position & Independence |
GDPR-A39-01 | GDPR A39-01: Data Protection Officer Tasks |
GDPR-A44-01 | GDPR A44-01: International Data Transfer Controls |
GDPR-A45-01 | GDPR A45-01: Adequacy Decision Data Transfers |
GDPR-A46-01 | GDPR A46-01: Data Transfer Safeguards |
GDPR-A5-01 | GDPR A5.01: Lawfulness, Fairness & Transparency |
GDPR-A5-02 | GDPR A5-02: Purpose Limitation Compliance |
GDPR-A5-03 | GDPR A5-03 Data Minimisation | GRCWatch |
GDPR-A5-04 | GDPR A5-04: Data Accuracy Control & Compliance |
GDPR-A5-05 | GDPR A5-05: Storage Limitation & Data Retention |
GDPR-A5-06 | GDPR A5-06: Data Integrity & Confidentiality Controls |
GDPR-A6-01 | GDPR Article 6: Document Lawful Basis for Data Processing |
GDPR-A7-01 | GDPR A7-01: Consent Requirements & Records |
GDPR-A9-01 | GDPR A9-01: Special Categories Data Processing |
GDPR-A9-02 | GDPR A9-02: Explicit Consent for Special Categories |