I wrote an article about 2 months ago giving some practical guidance on how to start complying with GDPR.
Since I published the guidance, a number of people have said it really helped them get their head straight and get some clarity around the first logical steps that they needed to take.
This week, I dig a little more into why step 2 (creating a central record of your processing activity) is so valuable.
I recently attended a 2-day conference on data protection in Brussels.
While I will spare you the boring details, there are two key messages that could be of interest to real people who just want to be compliant.