Internal guidelines set out the company’s data protection policies and procedures. They include the organisation’s principles, obligations and internal standards for security and compliance management. They also assign internal roles and responsibilities and provide guidance on employee conduct.
Internal guidelines are essential to ensure compliance with data protection regulations and to help employees understand how data should be handled and protected.
Examples of internal guidelines
- (Framework) guideline on data protection
- Data retention policy
- Guidelines on requests from individuals
- Information security guideline
- Security incident management guidelines
