Readiness Self-Assessment
Have you appointed an Information Officer and registered them with the Regulator?
Do you only process personal information with the consent of the data subject?
Is personal data collected for a specific, explicitly defined and lawful purpose?
Is any secondary use of data compatible with the original purpose of collection?
Do you take steps to ensure data is complete, accurate, and not misleading?
Do you maintain documentation of all processing operations?
Are appropriate technical measures (firewalls, encryption) in place?
Do you have a process for data subjects to request access to their information?
Assessment Result
Note: This is a preliminary gap analysis, not a legal audit. It identifies potential risks but does not guarantee compliance.
Legal Disclaimer
This tool is designed for preliminary self-assessment purposes only. It does not constitute legal advice or a formal compliance audit. The Information Regulator requires specific, documented evidence for full compliance. Contact us for a formal Readiness Assessment.