Cyber Security Training & Software for Companies | MetaCompliance


Discover our suite of personalised Security Awareness Training solutions, designed to empower and educate your team against modern cyber threats. From policy management to phishing simulations, our platform equips your workforce with the knowledge and skills needed to safeguard your organisation.

Cyber Security eLearning

Cyber Security eLearning to Explore our Award-Winning eLearning Library, Tailored for Every Department

Security Awareness Automation

Schedule Your Annual Awareness Campaign In A Few Clicks

Phishing Simulation

Stop Phishing Attacks In Their Tracks With Award-Winning Phishing Software

Policy Management

Centralise Your Policies In One Place And Effortlessly Manage Policy Lifecycles

Privacy Management

Control, Monitor, and Manage Compliance with Ease

Incident Management

Take Control Of Internal Incidents And Remediate What Matters



Explore the versatility of our solutions across diverse industries. From the dynamic tech sector to healthcare, delve into how our solutions are making waves across multiple sectors. 

Financial Services

Creating A First Line Of Defence For Financial Service Organisations


A Go-To Security Awareness Solution For Governments


A Security Awareness Training Solution For Large Enterprises

Remote Workers

Embed A Culture Of Security Awareness - Even At Home

Education Sector

Engaging Security Awareness Training For The Education Sector

Healthcare Workers

See Our Tailored Security Awareness For Healthcare Workers

Tech Industry

Transforming Security Awareness Training In The Tech Industry

NIS2 Compliance

Support Your Nis2 Compliance Requirements With Cyber Security Awareness Initiatives



From posters and policies to ultimate guides and case studies, our free awareness assets can be used to help improve cyber security awareness within your organisation.

Cyber Security Awareness For Dummies

An Indispensable Resource For Creating A Culture Of Cyber Awareness

Dummies Guide To Cyber Security Elearning

The Ultimate Guide To Implementing Effective Cyber Security Elearning

Ultimate Guide To Phishing

Educate Employees About How To Detect And Prevent Phishing Attacks

Free Awareness Posters

Download These Complimentary Posters To Enhance Employee Vigilance

Anti Phishing Policy

Create A Security-Conscious Culture And Promote Awareness Of Cyber Security Threats

Case Studies

Hear How We’re Helping Our Customers Drive Positive Behaviour In Their Organisations

A-Z Cyber Security Terminology

A Glossary Of Must-Know Cyber Security Terms

Cyber Security Behavioural Maturity Model

Audit Your Awareness Training And Benchmark Your Organisation Against Best Practice

Free Stuff

Download Our Free Awareness Assets To Improve Cyber Security Awareness In Your Organisation

MetaCompliance | Cyber Security Training & Software for Employees


With 18+ years of experience in the Cyber Security and Compliance market, MetaCompliance provides an innovative solution for staff information security awareness and incident management automation. The MetaCompliance platform was created to meet customer needs for a single, comprehensive solution to manage the people risks surrounding Cyber Security, Data Protection and Compliance.

Why Choose Us

Learn Why Metacompliance Is The Trusted Partner For Security Awareness Training

Employee Engagement Specialists

We Make It Easier To Engage Employees And Create a Culture of Cyber Awareness

Security Awareness Automation

Easily Automate Security Awareness Training, Phishing And Policies In Minutes


Meet the MetaCompliance Leadership Team


Stay informed about cyber awareness training topics and mitigate risk in your organisation.

GDPR Countdown – The Final GDPR Checklist

gdpr countdown header

about the author

Share this post

Organisations around the world will soon be breathing a collective sigh of relief as the impending GDPR deadline finally comes into force. In this post, we have a GDPR checklist for the 

After all the planning and preparations that have taken place over the last two years, the GDPR will officially come into effect on the 25th May and completely overhaul the current data protection rules, giving EU citizens greater control over their data.

There has been a lot of last-minute scrambling as businesses rush to ensure they are compliant with the new regulation and not liable for the large fines that will be imposed as a result of non-compliance. There will be a number of organisations that have taken the time to methodically work through their GDPR planning and others that have left it all to the last minute.

No matter what stage you are at in your GDPR journey, our final checklist will provide you with some guidelines on what you need to do to make sure you are ready for the impending changes and steps you need to take to demonstrate compliance going forward.

1. Identify all the Personal Data you hold

GDPR Countdown - The Final GDPR Checklist

The EU defines ‘Personal Data’ as any information that can be used to directly or indirectly identify an individual (data subject). This will include everything from a name, email address, IP address and images. It also includes sensitive personal data such as biometric data or genetic data which could be processed to identify an individual.

If your organisation handles data for European citizens, you will need to complete an audit and find out:

  • What data is being collected?
  • Where is the data being sourced?
  • Why is the data being collected?
  • How is it processed?
  • Who has access?
  • How long is the data retained?
  • Where is the data being transferred to?
  • Is all the data needed?

2. Educate Your Personal Data Handlers

GDPR Countdown - The Final GDPR Checklist

A Personal Data Handler is anyone within your organisation that is authorised to handle and process personal data. Responsibilities are often assigned on a departmental basis. Ideally, each line of business will have a Data Privacy Champion, someone that will understand personal data handling, processing and privacy practices. Appointing a personal data handler will help facilitate compliance within your organisation.

3. Understand Data Subject Consent

GDPR Countdown - The Final GDPR Checklist

The GDPR specifies that there must be explicit consent by the user. This consent must be recorded for reporting and auditing processes. Where the processing is based on a data subject’s consent, they can withdraw this consent at any time. They also have the right to know how long their personal data will be retained for future processing. If your organisation processes data of underage subjects, you need to make sure you have the adequate systems in place to verify individual ages and gain consent from guardians.

Data subjects should be provided with notifications that are clear and easy to understand. They should also have the right to know what safeguards are in place to protect their personal data and whether any third parties are involved in the processing of their data.

4. Update Procedures for Data Subject Request Handling

GDPR Countdown - The Final GDPR Checklist

Organisations must have processes in place for accommodating data subject requests. Data subjects must be allowed to exercise their rights free of charge and organisations must comply within one month of receiving the request, or with a maximum two-month extension depending on the complexity and number of requests.

5. Plan for Privacy Breach Identification and Response

GDPR Countdown - The Final GDPR Checklist

Once organisations are aware that a privacy breach is in process, the immediate concern is to stop the breach from continuing. The GDPR requires that organisations disclose any personal data breaches to the relevant supervisory authority within 72 hours of detection.

If the breach results in a high risk of affecting an individual’s rights and freedoms, then the individual must be notified with immediate effect.

Companies should have an incident response plan in place outlining how incidents will be identified, who will be engaged, how the threat will be contained and eradicated, and how the business will document and report on the breach.

6. Evidence Understanding of Data Protection

GDPR Countdown - The Final GDPR Checklist

Organisations need to prove that staff have both read and understood GDPR Policies. Being able to provide this evidence puts organisations in a strong position to demonstrate that ‘Privacy’ has become an integral part of their day to day business. eLearning is one of the best ways to ensure that staff fully understand GDPR policy.

An eLearning program will not only ensure effectiveness of the learning experience, but it will also enable organisations to demonstrate that policies have been properly distributed in a meaningful and measurable way.

7. Report Ongoing Compliance Efforts

GDPR Countdown - The Final GDPR Checklist

The GDPR requires that organisations evaluate the effectiveness of personal data related to operational practices. Carrying out regular evaluations of compliance efforts and having a reporting structure in place will enable businesses to evidence accountability to senior management, stakeholders and supervisory authorities should the need arise. The effectiveness of an ongoing compliance program requires tracking measurable metrics and adjusting processes when inconsistencies are identified.

8. Conduct a Cyber Security Review

GDPR Countdown - The Final GDPR Checklist

Cyber-crime is continuing to evolve and grow at a rapid rate and presents a real danger to organisations across the world. Organisations need to assess how secure their network is, how easy it could be breached, is data encrypted and are staff trained to recognise the risks.

The majority of all data breaches begin with a simple phishing email, so it is vital that organisations invest in training their employees to identify and respond appropriately to these threats.

The imminent GDPR deadline is by no means an endpoint to compliance. The GDPR will continue to evolve over time and organisations will need to constantly update their processes and systems to comply with the regulation.

If you would like more information on how your organisation can improve its approach to GDPR compliance, click here, to find out how MetaCompliance can help.

GDPR for Dummies

If you would like a copy of our GDPR for Dummies guide absolutely FREE please click on the image below

GDPR Countdown - The Final GDPR Checklist

Easy to understand GDPR staff training

Combined with the GDPR for Dummies guide, our bite sized nano videos will allow your staff to understand the key aspects of GDPR. This is the highest quality GDPR education program available. Find out why our customers are making progress on their GDPR projects.

YouTube video

DISCLAIMER: The content and opinions within this blog are for information purposes only. They are not intended to constitute legal or other professional advice, and should not be relied on or treated as a substitute for specific advice relevant to particular circumstances, the Data Protection Act, or any other current or future legislation. MetaCompliance shall accept no responsibility for any errors, omissions or misleading statements, or for any loss which may arise from reliance on materials contained within this blog.

Other Articles on Cyber Security Awareness Training You Might Find Interesting