Missing just over a year to the date of entry into force of GDPR (25/05/2018). Recently the CNIL (the French data protection authority) published a guide to help the organizations in the prepapration for the General Data Protection Regulation (GDPR).

The guide includes six steps:

  1. Designing a driver;
  2. Mapping the personal data treatments;
  3. Giving priority to necesary actions;
  4. Performing a Risk analysis;
  5. Setting the internal processes;
  6. Preparing all necessary documentations to demonstrate the compliance with the GDPR.