Services

No two needs are the same

A proposal for each type of company. The aim is not to have a certificate, but to ensure that you comply with the regulations with the least possible effort, improving your company’s image and guaranteeing peace of mind and the absence of sanctions.

ARP creation and update

The Register of Processing Activities has replaced the old file declaration and is mandatory for most companies. If you do not have it or it is not up to date, it should be the first step to take.

Consent management

The whole of the new regulation is about managing consent. Implied consent is no longer enough, ‘clear affirmative action’ is needed. Are you prepared to demonstrate this?

Internal changes

Sometimes changes in internal organisation and processes may be required to ensure compliance, for example in the consent management process.

Compliance analysis

The GDPR is based on the principle of proactive accountability. It is therefore necessary to be able to prove that the necessary steps have been taken to ensure compliance. Analytics can be of exceptional help.

Video surveillance

If you have video surveillance, there are a series of specific regulations that must be known and complied with. Signage, camera orientation or rights management are basic aspects to take into account.

Web assessment

The company website can be a great ally, but the precepts of the RGPD and the LSSI must be faithfully complied with. It will often be your first business card, and watch out for international transfers!

Processing agreements

Do we know our suppliers and are we sure that they are good at data protection?If we are data controllers, we have specific responsibilities.

Technical measures

Passwords, cloud, email security, servers, ISO standards, management systems ... the list of technical needs is very long and can become unmanageable. It is not worth taking risks.

PIA - Risk analysis

In certain cases and depending on the type of data processed, an impact assessment and, depending on its outcome, a risk analysis will be required to determine whether a processing operation is acceptable.