You collect data every day. Through forms, emails, systems, and conversations. But do you know exactly what you have, where it lives, and whether you're allowed to keep it?

For businesses operating in Europe, that's not just a good question. It's a legal requirement.

This checklist helps you answer it. Clearly, practically, and without the legal jargon.

What you'll get:

In this GDPR personal data checklist, you'll document:

• What personal data you collect and why you have it
• Your legal basis for storing and processing it
• Who has access to it and how long you're keeping it
• Whether consent has been given and how the data is protected
• Whether any data is being shared with third parties or transferred outside the EU

Each question points to one thing: whether your business has the clarity and control GDPR requires.

How to use it:

Work through all 13 questions for every type of personal data your business collects. Answer honestly. If you can't answer a question, that's where your risk is.

Why this checklist?

GDPR compliance rarely fails because of bad intentions. It fails because no one has ever sat down and mapped the data properly.

This checklist gives you a fast, practical starting point – so you know exactly where you stand and what to do next.

Get a complete picture of your personal data in one place.

This checklist is for information purposes only. For advice specific to your situation, talk to a qualified legal professional.