Our team of security and privacy experts can help build or revamp a program from the ground up.
Maintain my Program
Our virtual privacy team can help supplement your team to maintain ongoing privacy work streams.
Assess my Program
Our team can provide an independent assessment of your privacy program to uncover risk.
Certify my Program
We can integrate privacy into your ISO 27701, SOC 2, or other certification efforts.
GDPR Compliance Universe
Scope and Planning
Develop detailed project plan
Determine nature of GDPR applicability (Controller vs. Processor)
Perform GDPR Applicability Assessment
Other privacy considerations like CCPA, HIPAA, or others?
Current State Assessment
Perform data inventory
Perform 100 point gap assessment against GDPR requirements to determine current state of maturity
Produce gap assessment report with detailed recommendations
Sub-Processor inventory and analysis
Develop road map to resolve all identified gaps from current state assessment
Establish privacy governance structure (DPO, if required)
Privacy Impact Assessments (PIA)
Policies and Procedures
Security Controls (Adequate Safeguards)
Annual re-assessment of GDPR compliance
Annual refresh of Data inventory, PIAs, Policies and Procedures
Consider ISO 27701 or similar certification
Report to key stakeholders and board of directors
Privacy Program Management
+ Manage all certification and compliance workstreams + Collaborate with the internal team and external auditors + Map multiple privacy requirements in one place + Leverage the compliance calendar to assign and track activity + Real-time program status reporting + And much more!