The Spanish Data Protection Authority (AEPD) recently released a comprehensive guide to help companies and public administrations comply with the GDPR.
The guide focuses on the application of the privacy by design principle. It also discusses the key role of data protection officers, as well as the importance of risk management in protecting the rights and freedoms of individuals.
The AEPD also highlights the responsibility of controllers to ensure compliance, transparency and accountability when processing personal data.