We use cookies to improve your experience. By using our site you are accepting our cookie policy. 
Read our privacy policy to learn more.

The GDPR Handbook

The GDPR Handbook

A Guide to Implementing the EU General Data Protection Regulation

Ardi Kolah

From £41.66

Ensure your business or organization is compliant with new legislation with this definitive guide to the EU GDPR regulations.

Buy product
Buy now

About the book

The GDPR Handbook is a thorough introduction to the EU General Data Protection Regulation. It covers in detail how companies of all sizes need to operate within the GDPR requirements and how to deal with information security and risk, and specifically addresses the key duties and responsibilities of the Data Protection Officer.

Using the latest research, this book will help Data Protection Officers and businesses carry out Data Protection Impact Assessments, create and enforce data protection policies, train staff and manage data protection teams. The GDPR Handbook is the ultimate, jargon-free guide for any company or organization to interpret GDPR into clear, actionable steps.

Table Of Contents

    • Chapter - 00: Introduction
    • Chapter - 01: ‘Speed read’ of General Data Protection Regulation 2016/679 (GDPR);
    • Chapter - 02: The role of the Data Protection Officer (DPO);
    • Chapter - 03: The gap between policy, company appetite and reality;
    • Chapter - 04: Upward and downward communication;
    • Chapter - 05: Identifying risks;
    • Chapter - 06: Sanctions, compliance and fines;
    • Chapter - 07: The Data Protection Impact Assessment (DPIA);
    • Chapter - 08: Privacy and security breach management;
    • Chapter - 09: Managing the value chain;
    • Chapter - 10: Introducing data protection by design and by default;
    • Chapter - 11: Contracting out personal data processing;
    • Chapter - 12: Data incident breach: obligations, implications and management;
    • Chapter - 13: Security standards;
    • Chapter - 14: Implementing data protection by design and by default;
    • Chapter - 15: Technical security measures;
    • Chapter - 16: Cloud computing and bring your own devices (BYOD) in the workplace;
    • Chapter - 17: Mobile technologies;
    • Chapter - 18: The Internet of Things (IoT);
    • Chapter - 19: Trans-border personal data transfers;
    • Chapter - 20: Physical personal data records;
    • Chapter - 21: Security updates and looking towards the future;


Ardi Kolah helped us demystify and facilitate our compliance with GDPR, and now he has done likewise for readers of his comprehensive, practical, actionable GDPR handbook.
Steven Goodman, Executive Vice President and Chief Legal Officer, Hitachi Consulting Corp

It converts into digestible form the requirements of the GDPR, setting out how those requirements should be managed and the risks of not doing so. Easily navigable and clearly laid out, this is a valuable resource for any organization touched by the GDPR - that is just about everyone.
Philip Coppel QC, Cornerstone Barristers

As a newly appointed DPO, this book offers invaluable insights as to how we prepare and remain compliant with GDPR as well as harnessing the opportunities it brings for deepening digital trust with our clients.
Amir Mirza, Alumni, GDPR Programme, Henley Business School, UK

Whether you require a quick reference facilitated by the speed read overview section, a more in-depth understanding of specific articles within the regulation, or pragmatic examples of how to apply the rules, this book provides the lot!
Gary Brown, GDPR Programme Director, Santander UK plc

Privacy and the protection of data has become a strategic issue that is central to trust. This timely handbook is an extremely practical, comprehensive, clearly written manual for understanding the implications of and complying with GPDR.
Ravi Venkatesan, Chairman, Bank of Baroda, and former Chairman of Microsoft India

This book covers all areas which should be considered by the Data Protection Officer including the business processes design, the implications of technology development on privacy and the obligations of all individuals in the organization. I would highly recommend this book to any Data Protection Officer.
Guy Johnson, Group Data Protection Officer, Marks & Spencer

A comprehensive breakdown and explanation of the GDPR which is as relevant and helpful to those new to the subject as it is to data protection veterans.
Mark Keddie, Global Data Protection Officer, Dentsu Aegis Network

As companies and public authorities in the EU and beyond grapple with how to comply with the General Data Protection Regulation, Ardi has cut through the noise of conflicting advice with this practical and comprehensive reference. Ardi has done a tremendous service to the privacy community.
Robert Gilbert, Privacy Act Reform Initiative, Department of Justice, Government of Canada

London is the financial centre of the world and much of this activity is increasingly dependent on the processing of personal data. Training and education on the new higher standards brought about by the GDPR is essential. This GDPR handbook sits at the heart of what every company in the City of London should do to maintain and build trust.
Andrew Marsden, Chairman, Financial Services Group of Livery Companies

The handbook contains a number of invaluable checklists and templates that will help organizations and those with responsibility and accountability to properly identify risks and manage their customers' personal data.
Mark Chipperfield, Head of Data Management, BBC

Ardi Kolah brings a practical stance to the regulation, with a set of insights and actions, that will help drive significant changes through your organization.
Nick J S Taylor, UKI Security Lead, Accenture

This is a very thorough and timely handbook from one of the world's leading authorities on the relationship between the law, sales and marketing. It is comprehensive, insightful, practical and clearly written. A must-read.
Professor Jaideep Prabhu, Judge Business School, University of Cambridge

Book Details

  • EAN: 9780749474942
  • Edition: 1
  • Published: 3rd June 2018
  • Paperback
  • Format: 235x155
  • 376 pages

About the Author

Ardi Kolah is Executive Fellow and Director of the GDPR Transition Programme at Henley Business School and founder of GO DPO® - the strategic partner for many multi-national clients in GDPR compliance. He is Editor-in-Chief of the Journal of Data Protection and Privacy and a keynote speaker on GDPR for organizations including the British Bankers' Association, the International Association of Privacy Professionals and the HR Directors Forum.

Ardi Kolah

Related blog posts