- Can data subjects easily access, rectify and erase their data?
- Does your organisation have offices, servers,… outside the EU?
- Are you using cloud services to process customer data? Are these GDPR compliant?
- Do you have a subcontractor outside the EU?
- Will your organisation process and/or store all customer data within the EU?
- Are all your employees trained on GDPR Data Protection compliance?