PARTICULAR
PROFESSIONAL
MEDIA CENTER | GLOSSARY | NEED HELP | PRESS | FR - EN | MANAGEMENT
COOKIES
MY THEMATIC GDPR COMPLIANCE
TEXTS
CNIL OFFICIALS
> SkipTECHNOLOGIES
to action> To go
further
GDPR: prepare in 6 steps
On May 25, 2018, the European regulation entered into force. Of
many formalities with the CNIL disappear. In return,
the accountability of organizations is strengthened. They must now
ensure optimal data protection at all times and be in
able to demonstrate it by documenting their compliance.
STEP
1
DESIGNATE A
PILOT
STEP
2
MAPPING
STEP
3
PRIORITIZE
STEP
4
MANAGE THE
RISKS
STEP
5
ORGANIZE
STEP
6
DOCUMENT
APPOINT A PILOT
To manage the governance of the personal data of your structure, you
will need a real conductor who will carry out a mission
information, advice and internal control: the protection officer
Datas. Until 2018, you can already designate a
"IT and freedoms correspondent", which will give you some time
in advance and will allow you to organize the actions to be carried out.
> Find out more
MAPPING YOUR PERSONAL DATA PROCESSING
To concretely measure the impact of the European regulation on protection
of the data you process, start by making a precise inventory of your
processing of personal data. The development of a register of
treatments allows you to take stock.
> Find out more
PRIORITIZE ACTIONS TO BE TAKEN
Based on your registry, identify the actions to be taken to comply
current and future obligations. Prioritize these actions with regard to the risks
what impact your processing has on the rights and freedoms of individuals
concerned.
> Find out more
MANAGE RISKS
If you have identified the processing of personal data that may be
generate high risks for the rights and freedoms of individuals
concerned, you will have to carry out, for each of these treatments, an analysis
Data Protection Impact (DPIA).
> Find out more
ORGANIZE INTERNAL PROCESSES
To ensure a high level of protection of personal data by
permanently, put in place internal procedures to ensure that
take into account data protection at all times, taking into account
all the events that can occur during the life of a
processing (e.g. security breach, management of rectification requests or
access, modification of the data collected, change of service provider).
> Find out more
DOCUMENT COMPLIANCE
To prove your compliance with the regulations, you must constitute and consolidate
the necessary documentation. Actions and documents carried out at each stage
should be reviewed and updated regularly to ensure protection
continuous data.
> Find out more
Subscribe to the newsletter
name@example.fr
SUBSCRIBE TO THE NEWSLETTER
Your email address is only used to send you CNIL newsletters. You
can use the unsubscribe link integrated in the newsletter at any time. Learn more about managing your
data and your rights
National Commission for Informatics and
Freedoms
MEDIATHETIC
MY GDPR COMPLIANCE
OFFICIAL TEXTS
THEMES
Understanding the GDPR
Take action
Compliance tools
online services
Control of the CNIL
The European framework
The national framework
The decisions of the CNIL
GDPR in dataviz
Bank
Territorial communities
Commerce - Marketing
Coronavirus (COVID-19)
Innovation
Housing
Open data
Health
Social
VSE-PME
Job
Public services
Political and civic life
TECHNOLOGIES
GLOSSARY
Biometrics
Cookies and other trackers
Cybersecurity
Video surveillance Video protection
Artificial intelligence
Connected objects
Data anonymization
Blockchain
Civic tech
GDPR Developer Guide
FR-EN GLOSSARY
NEED HELP
HURRY
FR | EN
COOKIES MANAGEMENT
CNIL
Missions
Operation
In Europe & in the world
A look back at the history of the CNIL
Interregulation and partnerships
Recruitment
Public markets
Open CNIL
> NEED HELP
LEGAL NOTICE
|
PERSONAL DATA
|
PUBLIC INFORMATION
|
RECRUITMENT
|
RSS FEED
|
MY ACCOUNT
|
CONTACT

