O'Reilly logo

EU General Data Protection Regulation (GDPR): An Implementation and Compliance Guide by IT Governance Privacy Team

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

CHAPTER 7: DATA MAPPING

In order to fully appreciate the scope of the GDPR and your duties in relation to it, it’s essential to understand the personal data you are collecting and that you already hold. This is especially important for DPIAs, for the simple reason that a DPIA relies on having a comprehensive understanding of the data lifecycle.

There’s no explicit requirement for data mapping in the Regulation, but it would be extraordinarily difficult to meet all of the GDPR’s requirements without establishing the lifecycle of personal data in your organisation.

Data mapping is generally considered best practice for any data protection or privacy compliance programme, because you can’t protect your information if you don’t know:

 

a)  that it ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required