Your Dossiers Are Complete - What's Next?

You’ve already done the hardest part

Working through your customer, employee, and third-party dossiers may have felt like a big task. But know this: you’re now ahead of 90% of SME owners in Belgium and the Netherlands. Most businesses have no idea what personal data they process, let alone have it documented.

What you now have:

• An overview of all personal data you process
• The purposes and legal bases per processing activity
• A picture of which third parties have access to the data
• The foundation for your record of processing activities

That’s significant. But a few more steps are needed to complete your compliance.

Your dashboard shows exactly what to do next

After completing your dossiers, GDPRWise automatically generates a personalized action list on your dashboard. These aren’t generic recommendations - they’re concrete steps based on your specific situation.

Each action has:

• A priority label (high, medium, low) so you know where to start
• A brief explanation of why this step is needed
• A link to the knowledge base with full details and templates
• The option to assign the action to a colleague or team member

Typical actions you may encounter:

• Check processing agreements - have you signed DPAs with all processors you’ve listed?
• Update your privacy policy - does your privacy policy still match the processing activities you’ve documented?
• Set retention periods - each processing activity needs a defined retention period
• Document security measures - what technical and organizational measures have you taken?
• Conduct a cookie audit - if your website places cookies, you need to map them

You don’t have to do everything at once

Compliance isn’t an exam you must pass in one go. It’s an ongoing process. And the good news: the most urgent steps are often the quickest.

Week 1-2: the basics

• Check if your processing agreements are in order (do you have a DPA with your accountant, email tool, cloud storage?)
• Update your privacy policy

Week 3-4: security and procedures

• Document your security measures
• Draft a procedure for handling data breaches
• Set up a register for data subject requests

Month 2+: the details

• Set retention periods for all processing activities
• Conduct a cookie audit
• Train your employees on the basics

Each action includes guidance

You don’t need to be a privacy expert to complete the actions. Each step links to the relevant knowledge base article with:

• A clear explanation in plain language
• Practical real-world examples
• Downloadable templates where needed
• Common mistakes to avoid

What happens next?

GDPRWise continues to support you, even after completing your actions:

• Periodic reminders - you’ll receive a notification when it’s time to review your dossiers
• Regulatory changes - if there are relevant changes to the GDPR or national legislation, you’ll get an update
• New processing activities - when you start using a new tool or launch a new process, you can easily add it to your dossiers
• Audit trail - you automatically track when you completed each action, useful during an inspection

Most importantly: you’re not on your own. Have a question about a specific action? Our support team is happy to help.