Get FREE 12-month access to the AI-Powered Knowledge Base worth $450
with your ISO 27001 toolkit purchase
Limited-time offer – ends June 27, 2024

Expert Advice Community

Guest

Business Continuity Plan and GDPR

  Quote
Guest
Guest user Created:   Jul 12, 2023 Last commented:   Jul 12, 2023

Business Continuity Plan and GDPR

If we want to comply with the GDPR,

is it mandatory that we come up with a Business Continuity Strategy/Plan?

Or will a Disaster Recovery Plan be sufficient? Which we are writing for ISO 27001 anyway.

0 0

Assign topic to the user

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Tudor Galos Jul 12, 2023

The Disaster Recovery Plan should be sufficient in this case. The requirements in Article 32 GDPR - Security of processing are for a data controller to “implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including inter alia as appropriate: […]

(b) the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services; (c) the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident;”.

If your Disaster Recovery Plan matches these requirements, it should be OK.

Please also consult these links:

Tudor Galos
Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jul 12, 2023

Jul 12, 2023

Suggested Topics

Guest user Created:   Aug 06, 2023 EU GDPR
Replies: 1
0 0

Do we need VPN to comply with GDPR?

Guest user Created:   Jan 19, 2023 EU GDPR
Replies: 1
0 0

GDPR in Sweden