It applies to all organisations - public and private, anywhere in the world - that handle, store and process the personal data of EU citizens. Applicable also to non-EU companies that process personal data in the EU. GDPR dictates the procedures and consequences surrounding data breaches and notification.
Worldwide revenue maximum penalty in case of data loss
The new EU General Data Protection Regulation requires organizations to undertake significant operational reform to meet the increased obligations of handling personal data. Appropriate record keeping is critical as the GDPR requires organizations to demonstrate compliance and accountability. Therefore, we offer the services your company needs to be in compliance with the new GDPR.
To comply with the new data subject rights set forth in the GDPR, organizations should make it easily accessible for data subjects to submit requests. We provide a standardized way for privacy programs to receive requests of access, rectification and withdrawal and manage them in a centralized system.
Because of GDPR’s 72-hour notification requirements, it’s critical for organizations to have a systematic process in place to meet these requirements. With us you can maintain incident and breach records, evaluate against notification requirements, and analyze overall risk with connections to the underlying data inventory.
We provide a simple solution for the record of processing activities, designed to address compliance with GDPR Article 30 record keeping requirements. Understanding how data is flowing through the organization is a pre-requisite to being able to secure the data and analyze risks. Maintaining an inventory helps organizations more efficiently respond to data subject rights request and clearly identify consent purposes.
For consent to be valid, it must be freely given, specific, informed and unambiguous, and given with a clear affirmative action. Our solution demonstrates compliance by maintaining detailed records of consent. As organizations collect massive amounts of personal data, monitoring and maintaining an accurate audit trail of consent is becoming increasingly important and equally difficult.