Versions Compared

Version Old Version 27 New Version 28
Changes made by

Benjy Meyer

Benjy Meyer

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Expand
titleWhich countries do you store personal data in, or transfer personal data to? Are any transfers of the personal information outside of the UK?

https://commonplace.atlassian.net/l/cp/11d1YW76

Expand
titleDo you use appropriate legal mechanisms for all international transfers of personal data?

https://commonplace.atlassian.net/l/cp/hTQ1VG7K

Expand
titleHas your organisation been subject to any personal data access requests from governments or other authorities in the last 24 months?

https://commonplace.atlassian.net/l/cp/cWvQfw1h

Expand
titleDoes your organisation have a nominated Data Protection Officer (DPO)?

https://commonplace.atlassian.net/l/cp/DnNqrb94

Expand
titleDoes your organisation have an up-to-date Data Protection Policy?

https://commonplace.atlassian.net/l/cp/kLj7m2Q0

Expand
titleDoes your organisation maintain a record of all personal data collection & processing activities?

https://commonplace.atlassian.net/l/cp/3N6QRRc2

Expand
titleHas your organisation defined and documented the lawful basis of each instance of personal data collection or processing?

https://commonplace.atlassian.net/l/cp/aZNL5wpE

Expand
title Does your organisation conduct a Data Protection Impact Assessment (DPIA) for all processing that is likely to result in a high risk to individuals?

https://commonplace.atlassian.net/l/cp/GEF1vUvs

Expand
title Can your organisation facilitate an individual's data privacy rights?

https://commonplace.atlassian.net/l/cp/R0PB2KEf

Expand
titleDoes your organisation have a Records Retention Policy?

https://commonplace.atlassian.net/l/cp/aSNRQm92

Expand
titleDoes your organisation have robust detection, investigation and reporting procedures in place for personal data breaches, including maintaining a record of all personal data breaches?

https://commonplace.atlassian.net/l/cp/qQevr3Wm

Expand
titleDoes your organisation have a process for notifying the relevant Authority and all relevant parties (e.g. data controllers) when a breach occurs?

https://commonplace.atlassian.net/l/cp/DFkVe71a

Expand
titleHas your organisation suffered a security incident that led to a Personal Data breach in the last 6 months?

https://commonplace.atlassian.net/l/cp/s3UCWyCu

Expand
titleDoes your organisation process personal data on behalf of another organisation?

https://commonplace.atlassian.net/l/cp/BJAo0kxx

Expand
titleWho owns the data collected via Commonplace?

https://commonplace.atlassian.net/l/cp/JFbR22ok

Expand
titleIs your organisation registered with the Information Commissioner’s Office for Data Protection purposes?

https://commonplace.atlassian.net/l/cp/6npzwGTU