Get a clear view and action plan to achieve compliance with the current privacy legislation
Are you compliant with the current privacy legislation including GDPR? A gap analysis of your current privacy situation offers a clear view on the privacy risks your organization currently faces as well as an idea of the measures to take to achieve compliance. This privacy assessment can also be useful to efficiently start your privacy implementation journey.
CRANIUM shows you how to start your privacy implementation trajectory
- We start with a kick-off to create awareness and a privacy assessment questionnaire for your key stakeholders in order to collect and analyze data.
- This is followed by a full privacy and risk analysis.
- Our findings are gathered in a privacy report and coupled with a privacy roadmap for privacy risk mitigation including priority and variability settings. This privacy assessment will tell you exactly how and where to start your privacy implementation trajectory (including GDPR). Read more about our DPIA if you are looking for more advice related to a specific high-risk processing activity.
Assess your compliance level and track the potential improvements
Conducting a privacy audit of your organization in accordance with a documented audit procedure can track potential improvements and improve your compliance. You will know if you are tackling the right aspects of your data protection framework and if you are doing so efficiently. But first and foremost this will demonstrate your privacy commitment and legislation compliance towards external and internal stakeholders.
CRANIUM links your risks to concrete recommendations
As there is no proper framework for approved certification mechanisms yet, CRANIUM uses the BC5701:2018 standard as a practical guideline, reshuffling the framework into nine manageable blocks. We begin the audit with a series of interviews with internal stakeholders, combined with a thorough review of the documentation provided. Based on this input, we identify the risks for each section. Thereafter the ideal situation is described, linking the risks to concrete recommendations, concluded by a summary advice for the follow-up process.
What does a privacy audit contain?
- Scope Statement
- Control Framework
- Execution Plan
- Report & executive summary
- Privacy Action Plan addressing key flaws and risks for increasing privacy maturity