The Data Protection Directive offers a clear regulation of data protection principles (lawfulness, good faith, transparency, processing of special data, data minimisation, purpose limitation, data quality, storage limitation), as well as easily implementable data security measures and comprehensible data protection processes.
The chapter on keeping the register of processing activities describes the minimum requirements for the register and provides practical examples for its design.
The section on employee awareness describes the minimum content of mandatory data protection training.
