Not started on GDPR yet, our classification template can help!

GDPR is not a one off exercise, so we have an easy to understand spreadsheet to help you make sense of your data.

General Data Protection Regulation (GDPR) is really (Analog & Digital) Data Protection, and for a small to medium sized business knowing where to start with GDPR can be a nightmare. It is important to understand though that most GDPR tasks are something you probably needed to be doing anyway or probably already do without realising, namely:

Business Process, Shadow IT, Retention, Marketing, Rights/Sharing, DLP/BC/DR. Responsibilities & Legal Requirements

Think of this as a series of questions about your data when it comes to personal information. What do you hold, Who do you have data on, Why do you have it, Where is it stored, When did you get it, How did you get it, etc. etc.

https://gum.co/GDPRtemplate

These questions need to be answered to classify your data for GDPR and decide whether a Data Protection Impact Assessment (DPIA) is required, no matter the size of your business. For small and medium businesses a good starting point is our GDPR Data Classification Template which lists over 51 types of personal data that you might be holding and the basic questions that need answering.
https://gum.co/GDPRtemplate

https://gum.co/GDPRtemplate

Once you have filled in the main spreadsheet, you can move onto the detailed Where sheet, which helps identify more granular risks and of course, exactly where the data is.

https://gum.co/GDPRtemplate

https://gum.co/GDPRtemplate

https://gum.co/GDPRtemplate

Other GDPR Resources
http://bit.ly/CNIL-pia For guidance on Data Protection Impact Assessments (DPIAs) see the UK Information Commissioner's Office (ICO) http://bit.ly/ICO_DPIA which also includes 

If you then need to conduct a data protection impact assessment (DPIA) the UK ICO has a free MS Word template at: https://ico.org.uk/media/for-organisations/documents/2258857/dpia-template-v1.docx or free DPIA software by the French Data Protection Authority, at: http://bit.ly/CNIL-pia

The UK ICO also has a data protection self-assessment toolkit for SMEs