GDPR and data destruction services. 290118 - Maidstone and Tunbridge Wells NHS Trust

1. How would you describe your GDPR preparedness?
2. Have you identified all your data processing partners?
3. Do you have contracts in place with all your data processing partners?
4. Do you use a third party to provide data erasure or destruction services on your end of life IT infrastructure?
5. If you use a third party, do you have a contract in place with them?
6. How have you assessed “sufficient guarantees” from this company? (Please tick all that apply)
7. Does this contract include clarification on process for dealing with: (Please tick all that apply)?
8. If you use a third party what is their name?
9. How regularly do you or an independent third party, audit this company?

Download response GDPR and data destruction services. 290118