Nymity’s GDPR Compliance Toolkit
The Accountability principle runs through the core of the GDPR. Article 24 requires that organisations implement 'appropriate technical and organisational measures' to be able to 'demonstrate' their compliance with the Regulation. Nymity's research has identified 39 Articles (out of the 99 Articles in the GDPR) that need evidence to demonstrate compliance and has mapped these Articles to the Nymity Privacy Management Accountability Framework™.
The GDPR Compliance Toolkit provides an operational approach to GDPR compliance which results in demonstrable GDPR compliance. The Nymity GDPR Compliance Toolkit equips privacy officers with the resources necessary to understand, assess, and develop a plan to achieve demonstrable GDPR compliance.
Resources within the GDPR Compliance Toolkit:
GDPR Accountability Handbook
This new version is still providing a brief annotation for each GDPR article and maps compliance obligations to the Nymity Privacy Management Accountability Framework™ through technical and organisational measures, but it now also includes examples on Accountability Mechanisms and Evidence.
GDPR Readiness Assessment Questions
This spreadsheet is a readiness assessment tool that provides two sets of questions to ensure demonstrable compliance is embedded throughout your organisation; one for the privacy office and one for the operational and business units.
Accountability Roadmap for Demonstrable GDPR Compliance
This document enables the creation of an operational GDPR compliance roadmap based on the accountability mechanisms that are appropriate for your organisation.
Nymity Privacy Management Accountability Framework™ – adapted for GDPR
The Nymity Privacy Management Accountability Framework™ (“Framework”) is a comprehensive listing of over 130 technical and organisational measures identified through Nymity’s global data privacy accountability research. The measures are structured in 13 privacy management categories, and are jurisdiction and industry neutral. We have mapped the GPDR to the Framework to help streamline your compliance by identifying 55 technical and organisational measures that if put in place, may produce appropriate evidence to demonstrate GDPR compliance.
Getting Started Manual for GDPR Compliance
Nymity’s research has resulted in a two-step process (Baseline and Plan) to help organisations prioritise their GDPR compliance efforts. First learn to identify existing policies, procedures and other accountability mechanisms that are already providing rules and guidelines for processing personal data in your organisation that may be leveraged for GDPR compliance. Then, learn how to prioritise the creation of new accountability mechanisms to create an ongoing capacity to comply and demonstrate accountability under the GDPR.