ABCDEFGHIJKLMNOPQRSTUVWXYZ
1
GDPR Asset Registers
2
General Data Protection Register (Legislation recently introduced, we need to enumerate what data we handle or it'll be illegal)
3
ICO guidance
https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/
4
5
Text colour key
6
Red
Areas of concern (e.g. high risk storage location/unknown access/riak of loss e.g. HDD failure)
7
Blue
Data records we might not have (Some of which we really should have)
8
9
10
11
12
External processors Compliance information
13
Location
Provicy policy/GDPR spec
Privicy shieldnotes
14
SUSUPendingN/A
15
UniversityPendingN/A
16
Google
https://www.google.com/cloud/security/gdpr/
Yes
17
Bank?N/A
18
Facebook
https://www.facebook.com/business/news/facebooks-commitment-to-data-protection-and-privacy-in-compliance-with-the-gdpr
Yes
19
Github
https://help.github.com/articles/github-privacy-statement/
Yes
20
Slack
https://slack.com/gdpr
Yes
21
Trello
https://trello.com/privacy
Yes
22
Zoho
https://www.zoho.eu/gdpr.html
Yes
23
SmallpieceUnknownN/A
24
Flikr
https://policies.yahoo.com/us/en/yahoo/privacy/topics/datatransfer/index.htm
NO?
Problematic (no protection prommised)
25
Netlify
https://www.netlify.com/privacy/
NO
26
Circle CI
https://circleci.com/privacy/
NO
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100