GDPR and its Implementation in a Healthcare Facility

This article deals with the implementation of the GDPR in a selected healthcare facility. The theoretical part of the article introduces the legislative framework that regulates issues and the most relevant terms relating to the GDPR. The practical part is focused on the characteristics of the selected facility which is subjected to a GAP analysis. Subsequently, the processes carried out in the facility are described. Based on the information available, appropriate measures are proposed and summarized to protect personal data and to guarantee compliance with the requirements of the GDPR. The last part of the article describes data processing and a security incident report form