DPO services

AT A GLANCE FEATURE COMPARISON

 

GDPR Audit

DPO Assist

DPO Assist Plus

PLUS

DPO-as-a-service

GDPR AUDIT

 

The GDPR is the most significant development in data protection that Europe, possibly the world, has seen over the past twenty years and therefore unsurprisingly is designed to better take into account modern technologies, the way we work with them today and are likely to work in the future.

 

In addition, there is a much greater emphasis on compliance following a widely held belief that business had not taken data privacy seriously enough previously.

 

As a consequence, penalties are considerably harsher

and the compliance requirements are intended to spread

a far wider net to include small and medium businesses.

Our 76 point Audit includes the key points covered

in the following GDPR Articles:

 

 

Technical Measures - Art 28 (1)

 

Organisational Measures - Art 28 (1)

 

Data Protection Principles

 

Lawfulness of Processing - Art 6

 

Consent – Art 7

 

Legitimate Interest – Art 6

 

Profiling – Art 22

 

Legal Data Transfer - Art 44

 

Privacy Policies - Art 13

 

Third Party Processor Compliance - Art 28 (3)

 

Processing Records - Art 30 (2)

 

Data Protection Officer - Art 37

 

Data Subject Rights – Arts 15-21

 

Breach Notification - Art 33 (2)

Benefits

 

Assures customers of your readiness 

 

Avoids protracted contract negotiations 

 

Commercial advantage over non-compliant competitors

 

Enhances customer trust

 

Prepares you for official accreditation

 

DPO Assist

The DPO Assist service features the following:

 

 

Support for in-house DPO or Head of Data Protection

Monthly half day on-site documentation review and audit

Maintenance of third party supplier responses

Updates based on ICO and Article 29 Working Party advisories

Updates to key GDPR templates

Technology solution updates from key vendors

‘Compare & Contrast’ with industry best practice

Assistance with SAR and Breach Response processes

Assist IT with Privacy Impact Assessments

Maintenance of Processing Records

Email support for DPO and core business areas (IT, HR, Marketing etc)

 

 
 

DPOAssist Plus

PLUS

As with DPOAssist but with the additional features:

1 day per fortnight on-site documentation review and audit

DPO-as-a-service

As DPOAssist Plus but with the additional features:

3 days Setup Consultancy

Registered as DPO with the ICO

Review and advise on privacy policies, procedures and Accountability Framework documentation relating to the processing of personal data - Art 39(1)(a)

Oversee the establishment and maintenance of the personal data Processing Record - Art 30

Advise, collate and approve data protection impact assessments (DPIAs) - Art 39(1)(c)

Advise and oversee data breach reporting - Art 39(1)(a)

Act as the contact point for data protection authorities (ICO) for all data protection issues – Art 39(1)(d) and (e)

Provide advice and guidance on responses to Subject Access Requests and other rights from individuals (rectification, objection, erasure, portability) - Art 38(4).

Facilitate GDPR awareness and data protection best practice training

Monitor general compliance with the GDPR - Art 39(1)(b)

Quarterly risk report for senior management

 

Something else you're looking for? 

Copyright 2twenty4 Consulting