HOW IT WORKS

1 SCOPE DETERMINATION

Here we undertake a thorough assessment of scope of GDPR applicability. We determine the assets required to be GDPR compliant and the business portion which has to be excluded.

2 GAP ANALYSIS

It includes asset identification, risk assessment, and existing control identification. Based on basic tenets of GDPR, we decide the cost-effective measures for achieving data privacy and security. A detailed implementation plan is carried out.

3 IMPLEMENTATION

Implementation stage involves mapping data flows in and out of the organisation, establishing policies and procedures to generate lines of accountability and maintaining a system of checks-and-balances to ensure compliance with GDPR.

4 INTERNAL AUDIT

Under this phase conduct Privacy Impact Assessment (PIA) and Data Protection Audits (DPA) via seminars, workshops, questionnaires, PIA frameworks and onsite inspections.

5 CERTIFICATION

Certification process It is carried out by independent auditors (generally a US-based CPA), not by the implementers. We help you find suitable auditor for the certification process and help throughout the process.

ADVANTAGES

  • Avoid penalties and sanctions worth 4% of global annual turnover or €20 Million (whichever is greater).
  • Maintain your status quo with respect to working within EU or with EU partners.
  • Include Privacy by Design and Privacy by Default in your products, processes and technological implementations.
  • Improved data portability due to uniformity of data storage standards.
  • Increase customer and partner trust in your business by readily implementing GDPR

Contact Us