Once the data audit has been performed and
documented, it is time to assess how such data is managed by
your organization to make sure that this process fully complies with GDPR.
The result of this analysis should produce a report for each category of data identified in the data audit phase, highlighting the current management policy, together with all measures put in place to protect personal data and allow data subjects to fully excercise their rights.