Review of: Data Protection Strategy Implementing Data Protection Compliance, by Richard Morgan and Ruth Boardman
This third edition of Data Protection Strategy, fully revised to reflect the GDPR and the UK Data Protection Act 2018, provides a wealth of information for privacy practitioners. The practical guidance, tables of legislation, case law, ICO and European Data Protection Board guidance, and checklists, make this complex topic easily understandable.
The authors explain the general concepts of the GDPR and the UK DP Act, data audit methods, setting up procedures for compliance, and provisions applicable to the law enforcement area. The section on audits outlines their structure – how to prepare for and survive an audit. The compliance topics range from how to conduct a Data Protection Impact Assessment to relations with processors, dealing with children’s data and monitoring, just to name a few.