ChecklistSecurityPDF · 460 KB

GDPR Compliance Checklist

Ensure your data handling meets UK GDPR requirements — lawful basis, consent, data subject rights, breach notification, and record keeping.

About This Resource

UK GDPR compliance is a legal obligation for every business that processes personal data. This checklist provides UK businesses with a practical, actionable framework for verifying compliance across lawful basis for processing, consent management, data subject rights fulfilment, breach notification procedures, and record-keeping obligations. It helps you identify gaps in your current data handling practices and take corrective action before they become regulatory issues.

What's Included

  • Lawful basis assessment for each data processing activity
  • Consent management verification and audit trail checks
  • Data subject rights fulfilment procedures and response timelines
  • Data breach notification process and ICO reporting requirements
  • Record of processing activities template and review schedule
  • Data protection impact assessment triggers and process

Who Is This For?

Data protection officers, compliance managers, and business owners at UK businesses who need to verify and maintain UK GDPR compliance across their data processing activities.

Related Resources

Checklist

Cybersecurity Assessment Checklist

Evaluate your organisation's security posture across networks, endpoints, identity management, data protection, and staff awareness.

Guide

Phishing Awareness Training Guide

Train your team to identify and report phishing attempts — real-world examples, red flags, simulation exercises, and reporting procedures.

Template

Password Policy Template

Implement a robust password policy covering complexity requirements, rotation schedules, MFA enforcement, and privileged account management.

Newsletter sign up form - it's quick and easy