The Belgian Privacy Commission has issued some first guidance on the General Data Protection Regulation (“GDPR”) which will become effective as from 25 May 2018.
Firstly, the Commission has issued a “13-Step Plan for compliance with the GDPR”, describing several important steps or focus points to follow when assessing compliance with the GDPR. Furthermore, it has issued a draft recommendation regarding the Data Protection Impact Assessment, a new obligation under the GDPR. This draft recommendation is currently available for public consultation, which will end on 28 February 2017. Until that day, anyone can submit their suggestions and reactions to the draft recommendation. After that period, a definitive recommendation will be issued by the Privacy Commission. Further guidance on other GDPR topics is expected to follow.