GDPR: What every non-EU business should do now

Essential steps
Doing nothing is no option, so every non-EU company should start with the following four steps (and quickly after that, take 11 steps more!)

  1. Identify all the personal data which you process, where it is held and how it is processed.
  2. Identify and log your data flows, especially where recipients are located in non-EU countries.
  3. Review your data protection policies and data processes.
  4. Download our GDPR Guidance to see 11 more steps, a lot of extra information, and a Q&A about GDPR.