AT A GLANCE FEATURE COMPARISON
GDPR Audit
DPO Assist
DPO Assist Plus
PLUS
DPO-as-a-service
GDPR AUDIT
The GDPR is the most significant development in data protection that Europe, possibly the world, has seen over the past twenty years and therefore unsurprisingly is designed to better take into account modern technologies, the way we work with them today and are likely to work in the future.
In addition, there is a much greater emphasis on compliance following a widely held belief that business had not taken data privacy seriously enough previously.
As a consequence, penalties are considerably harsher
and the compliance requirements are intended to spread
a far wider net to include small and medium businesses.
​
Our 76 point Audit includes the key points covered
in the following GDPR Articles:
Technical Measures - Art 28 (1)
Organisational Measures - Art 28 (1)
Data Protection Principles
Lawfulness of Processing - Art 6
Consent – Art 7
Legitimate Interest – Art 6
Profiling – Art 22
Legal Data Transfer - Art 44
Privacy Policies - Art 13
Third Party Processor Compliance - Art 28 (3)
Processing Records - Art 30 (2)
Data Protection Officer - Art 37
Data Subject Rights – Arts 15-21
Breach Notification - Art 33 (2)
Benefits
Assures customers of your readiness
Avoids protracted contract negotiations
Commercial advantage over non-compliant competitors
Enhances customer trust
Prepares you for official accreditation
DPO Assist
The DPO Assist service features the following:
Support for in-house DPO or Head of Data Protection
​
Monthly half day on-site documentation review and audit
​
Maintenance of third party supplier responses
​
Updates based on ICO and Article 29 Working Party advisories
​
Updates to key GDPR templates
​
Technology solution updates from key vendors
​
‘Compare & Contrast’ with industry best practice
​
Assistance with SAR and Breach Response processes
​
Assist IT with Privacy Impact Assessments
​
Maintenance of Processing Records
​
Email support for DPO and core business areas (IT, HR, Marketing etc)
DPOAssist Plus
PLUS
As with DPOAssist but with the additional features:
​
1 day per fortnight on-site documentation review and audit
DPO-as-a-service
​
As DPOAssist Plus but with the additional features:
​
3 days Setup Consultancy
​
Registered as DPO with the ICO
​
Review and advise on privacy policies, procedures and Accountability Framework documentation relating to the processing of personal data - Art 39(1)(a)
​
Oversee the establishment and maintenance of the personal data Processing Record - Art 30
​
Advise, collate and approve data protection impact assessments (DPIAs) - Art 39(1)(c)
​
Advise and oversee data breach reporting - Art 39(1)(a)
​
Act as the contact point for data protection authorities (ICO) for all data protection issues – Art 39(1)(d) and (e)
​
Provide advice and guidance on responses to Subject Access Requests and other rights from individuals (rectification, objection, erasure, portability) - Art 38(4).
​
Facilitate GDPR awareness and data protection best practice training
Monitor general compliance with the GDPR - Art 39(1)(b)
​
Quarterly risk report for senior management
​
​