Ensuring compliance with GDPR
The purpose of this service is to ensure compliance with legislation in the area of information technology and cyber-security, in particular with the EU Data Protection Regulation - GDPR, for large organisations (e.g. ministries, multinationals).
The service is based on a decomposition of the legal acts into regulations, their transformation into specific obligations of the organisation and an identification of appropriate waya to fulfil these obligations.
It is followed by a gap and impact analysis, a proposal for an action plan for compliance, preparation of compliance demonstration, support of the subordinate organisations and departments, and education and consultation support for the responsible persons.