It is important to realise that the evidence your organisation is on track for GDPR compliance lies within your policies, procedures and other internal documents.  While your privacy policy and terms and conditions are the external documents people look at most the ICO would be more interested in your internal documentation.   What’s most important […]