The Regulation affords more data rights to individuals and requires organizations to develop defined policies, procedures and to adopt relevant technical and organizational controls to protect personal data.If a company deals with financial transactions or a financial institution. The ISMS policy should outline how the organization will protect cus