Identify Data Security Risks Under GDPR

5 min

Everyone in the company is responsible for data security.

Be mindful of your processes with data. Pay attention to the data you use, where it comes from, how you share it, and where you store it.

1. Data you use 

Understand the type of data you use in your work. It could be employee or patient records, sales information, or customer data. 

Knowing what you use can help you protect it. 

2. Data sources

Be sure you can track the path of data you access or receive and look out for any places it could get compromised.

E.g., you print out sensitive data to the printer room down the hall and forget about it.

3. Data sharing

Know who you share data with and who shares it with you and why. Only share and accept as much data as you need to do your job. 

4. Data storage

Log out of all systems when you’re done and keep printouts or other hard copies of information in a secure location.

E.g., be sure to pick up your printouts so no unauthorized person accesses them.

Let’s practice: 

Troy is responsible for generating data-usage reports for three teams. All three teams need customer contact information but only Team A needs their account details. Troy has been sending one multi-tabbed spreadsheet to everyone with all the data. 

Quiz 1 of 1

To minimize data security risks and be GDPR compliant, how should Troy handle sending out his reports going forward?

He should never print the report out.
He should generate a separate report for Team A.
He should only send the report via email.
He should send the report individually to each team member.

The correct answer is B.

Team members who don’t need certain data for their work should not have access to it. Troy should securely send a separate report to Team A with the data they need.


Know who to contact and how to reach them in the event of a data security issue.

Lesson complete

Like what you see? Try us for free!
Check out our library of 2000+ Microlearning® lessons and try creating your own lesson.

Sign me up