Privacy consultancy

GDPR: rely on experts!

PRIVACY CONSULTANCY

Services and activities to comply with the european regulation on the protection of personal data NO. 679/2016 and national privacy legislation.

Our offer guarantees companies the adaptation to the European Regulation concerning the protection of personal data no. 679/2016 and the national privacy legislation.

We have designed a customizable compliance path based on your needs, dimensions and business sector.

Privacy consulting includes a series of services and activities that help the Data Controller to comply with current regulations.

 

The compliance path includes:

ASSESSMENT ACTIVITIES

WHAT IS IT?

During the assessment activity, our consultants conduct interviews and analyze the existing documentation. In particular, we analyze the documentation relating to:

  • Policy and procedures adopted
  • Data Processors and appointees with designation and appointment documents
  • Contractual clauses for the transfer of data to third parties
  • Processing that requires notification to the Data Protection Authority
  • Minimal and suitable physical and logical security measures
  • Particular issues in the field of reference

 

The purpose of this phase is to detect compliance status in order to identify areas of improvement and provide an adjustment plan with the description of the solutions to be adopted for compliance.

ADJUSTMENT ACTIVITIES

WHAT ARE THEY?

The adjustment phase includes the following activities:

  • Document production
  • Implementation of technical – organizational measures
  • Requirements prescribed by the European and Italian legislators (e.g. information, consensual formulas, appointments, processing register, DPIA).

 

What is the DPIA?

The Data Protection Impact Assessment process is a risk analysis activity that assesses the threats and vulnerabilities of company assets. Subsequently, the risk management process consists of a series of guidelines to identify the security countermeasures necessary to mitigate the identified risk.

TRAINING ACTIVITIES

WHAT ARE THEY?

Activities aimed at raising awareness and training, aimed at management and operational staff with the aim of fostering greater awareness and knowledge of privacy matters in the company.

MAINTENANCE AND PRIVACY BY DESIGN ACTIVITIES

WHAT ARE THEY?

Continuous post-adaptation support in order to maintain the documentation, technical and organizational infrastructure. Support to the Data Controller in the evaluation of privacy impacts in the design phase of new activities (eg marketing, IOT, video surveillance).

THE DPO FIGURE

Find out more about AGM Solutions’ “DPO-as-a-service” service!

Ensure yourself advice and continuous support to always be in compliance!

AGM Solutions