…but what does it actually mean?
In a nutshell:
We have appointed a Data Protection Officer (DPO).
We have created awareness among decision makers about GDPR guidelines.
Our technical security is up-to-date. We have trained our staff to be aware of data protection.
Our customers can easily request access to their personal information.
We delete data that we no longer have any use for.