Reviewing your procedures – as your business will constantly evolve your GDPR procedure should align with the growth.
How regularly do I need to review my procedures?
Business are constantly evolving – through the development of new services, the use of new technology and growth within their industry. This means that controls implemented for GDPR (both logical and physical) may no longer be sufficient or relevant in 1 – 2 years time.
As with any other applicable legislation or risk based activity, it is best practice to perform a ‘health check’ every year to ensure that you remain in alignment with the requirements of GDPR. This should include a review of awareness within your organisation