OUTSOURCED DPO ASSISTANCE

1.Brief description

You know you have to implement GPDR, but you don't know where to start or what exactly implementation of compliance entails?

Have you been appointed Data Protection Officer within the organization you belong to, but it is not clear to you what the first steps are to start implementation and ensure compliance with the regulation?

Implementation, assurance and monitoring of compliance involves the exercise of a combination of competencies in the field of GDPR, Legal, IT and Human Resources.

The EXTERNALIZED DPO package responds to all these requirements and needs, benefiting from a whole team of experts trained in the field of data protection, which will provide internal assistance in all aspects related to confidentiality and data protection and which will provide advice according to the requirements of art. 38 and 39.

2. To whom it is addressed

• Companies wishing to provide support to their Data Protection Officer in adapting the data protection system to GDPR requirements;
• Companies that want complete outsourcing of the service because they need assistance in implementing and ensuring compliance;

3. Benefits

• Assistance in implementing measures to ensure data security and integrity: technical, operational, physical security (in accordance with art. 32);
• Assistance in performing mandatory analyzes and mandatory impact on personal data (in accordance with recital 84, 90, 91, 92, 94, art. 35);
• Assistance in preparing the plan for updating specific GDPR clauses in contracts with providers, clients, patients, etc. (in accordance with art. 24, 26, 28);
• Advice on the elaboration of the Register of Processing Records (in accordance with art. 30);
• Assistance in drafting internal decisions and reviewing job descriptions (in accordance with art. 6, 7, 13-23;
• Assistance in drafting internal inventory policies, procedures, forms and registers;
• Advice regarding the safekeeping of personal data records;
• Assistance in the elaboration of the GDPR Compliance Monitoring Plan and the internal legislation regarding the protection of personal data;
• Assistance in allocating responsibilities for information security;
• Advice on drafting notifications regarding the confidentiality of data of data subjects at the time of data collection;
• Free access to online training with integrated evaluation system and automatic generation of diplomas, ensuring compliance with art. 37-39 and 47n;
• The learning and examination of the employees will be done according to the working time of each one, reducing to a minimum their removal from production;
• The cost of purchasing this package is incomparably lower than the minimum fine granted for non-compliance with the regulation, this being 10 million Euros or 2% of the global turnover from the previous year for private organizations and 200,000 Lei for public institutions;

External DPO means, in fact, a team of experts dedicated to the organization:

• GDPR expert with 2 years experience in applying the Regulation, with international certification;
• IT expert with over 15 years in the field, with over 2 years experience in GDPR with expertise in IT systems auditing;
• Human Resources expert with over 10 years of experience in the field and over 1.5 years in GDPR, with DPO certification;
• lawyer with over 2 years experience in the field of GDPR;
• GDPR consultant with over 1.5 years of experience in implementing GDPR compliance at various public and private organizations with over 500 employees, DPO certificate authorized by ANC;

You enter the GDPRexpert * community and are constantly updated with new information, free services, examples of good practices, participation in information workshops to comply with Articles 39 and 47n, according to GDPR / 679.2016, at preferential prices or even free.

4. Describe the content

• GDPR Compliance Guide - What did you do, how long and with what resources, step by step
• GDPR Project Plan - Helps you visualize the progress of compliance activities
• Access to online training with integrated evaluation system, for 10 employees
• Individual diplomas for completing the online assessment of mastering the basic knowledge of GDPR and Information Security
• Template Notification of personal data security breach by National Supervisory Authority For Personal Data completed
• GDPR transition management assistance:

• Compliance documentation;
• Policies and procedures;
• Data processing management;
• Information security;
• International data transfer;
• Pseudonymization, minimization and encryption instructions;
• Adaptation of contractual clauses / third party agreements;
• Instructions for keeping records;
• Implementation of GDPR in Human Resources Management;

Copyright protection

The content of the digital documents included in the EXTERNALIZED DPO PACKAGE, offered by InITinvest Consulting SRL are protected by copyright. The digital materials included in this package are distributed exclusively to InITinvest Consulting clients and do not represent a legal consultation.