5 Key Aspects of GDPR for Legal Departments


For many businesses, the question “Who should own GDPR?” may result in some unclear answers.


New requirements under the GDPR relating to rights of individuals, data processing record keeping and the implementation of appropriate technical and organizational measures to ensure a level of security appropriate to the risk represent entirely new challenges for legal departments and data protection officers.


In-house legal departments play an important role in mitigating the legal risks to ensure an effective GDPR compliance program is put in place. Furthermore, GCs can lead efforts by fostering partnership between other departments, like IT, to ensure that infrastructure and systems help your organization meet the new GDPR requirements.

In this paper, we will highlight the key aspects of the GDPR that every legal department needs to understand, including:

  • demonstrating a lawful basis for data processing,
  • maintaining accurate records,
  • understanding your obligations in the event of a data breach,
  • developing a risk mitigation plan, and
  • how technology can help you with compliance

Download your FREE copy!