# GDRP Checklist

On May 25, 2018, a new law went into effect for all countries in the EU: the General Data Protection Regulation (GDPR). The GDPR replaces the previous law, the Personal Data Protection Act. The new law includes more obligations for companies and organizations that process personal data. To stay well informed on this topic, we recommend the following:

* Study the information about the new legislation on the Personal Data Authority site.
* Read the GDPR legislation.
* Follow the checkpoints on the GDPR Checklist.

### GDPR Checklist <a href="#id-1-toc-title" id="id-1-toc-title"></a>

#### 1. SSL on your website [#](https://thirdwp.com/docs/general/general-data-protection-regulation/#2-toc-title) <a href="#id-2-toc-title" id="id-2-toc-title"></a>

Make sure your websites can only be visited via https. Also, for practical and search engine reasons, we strongly recommend that you provide your website with full SSL.

#### 2. Privacy page <a href="#id-3-toc-title" id="id-3-toc-title"></a>

As a company, it is important to show which data you process and what for. You can do this by having a Privacy page on your website.

#### 3. Securely connect email <a href="#id-4-toc-title" id="id-4-toc-title"></a>

It is important that you also use an SSL connection for your e-mail. If you don’t have this, your network is completely readable by someone else. So make sure your emails are only sent and retrieved securely.

#### 4. Processor Agreement <a href="#id-5-toc-title" id="id-5-toc-title"></a>

Provide a signed ” processor agreement” and other data processors applicable.

#### 5. Provide a secure website <a href="#id-6-toc-title" id="id-6-toc-title"></a>

An optimally secure website is important, especially for items that contain personal data.

#### 6. Remaining matters <a href="#id-7-toc-title" id="id-7-toc-title"></a>

Consider the following:

* Fines for violations of the law
* The rights of involved parties
* Maintaining a processing activity register
* The possibility that clients may need to conduct a Data Protection Impact Assessment
* Privacy by Design & Privacy by Default
* Assigning a Data Protection Officer


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.thirdwp.com/general/gdrp-checklist.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.