Privacy Implementation.
Take action towards GDPR compliance.
Being compliant with data protection laws, such as the GDPR, can be a big challenge. We’ve seen firsthand that many businesses struggle to find the time, focus, and/or resources needed to truly improve their privacy practices and achieve compliance. Our Privacy Implementation can set you on the right track.
- Improved Data Protection
- Avoid Fines & Damages
- Gain Trust
What is the Privacy Implementation?
Whether you’re starting from scratch or looking to enhance your existing privacy practices, our Privacy Implementation provides a structured, comprehensive approach to achieving and maintaining GDPR compliance.
The Privacy Implementation is the perfect next step after the Privacy Scan. We’ll work alongside you, providing the expertise, tools, and support you need to transform your data protection practices.
Benefits of the Privacy Implementation.
Business-friendly
We understand that privacy compliance shouldn't hinder your business operations. Our approach is pragmatic and solution-oriented. We work closely with you to find privacy-friendly solutions that protect personal data while supporting your business goals.
Knowledge Sharing
We don't just implement and leave. Our goal is to empower your team with the knowledge and tools to maintain compliance long-term. We provide ongoing support and training, ensuring that privacy becomes an integral part of your organisational culture.
Ahead of the Curve
Privacy laws and technologies are constantly evolving. Our implementations are designed with flexibility in mind, allowing you to easily adapt to new regulations or changes. We keep you informed about upcoming developments so you stay ahead of the curve.
What to expect form an Implementation
The time needed and the exact approach may depend on the size of the organisation and the scope, but in general you can expect:
01 - Project Initiation and Scoping
We begin with a comprehensive kick-off meeting. If we haven’t already worked with you on a Privacy Scan, this is where we introduce ourselves and our approach. Together, we’ll define the project scope, outlining what will and won’t be included in the implementation. We’ll also agree on logistics such as project pace, work location, and tools to be used. Finally, we’ll establish a clear schedule for the entire process.
02 - In-Depth Assessment
Our consultant will interview key stakeholders in your organisation. The goal is to gather crucial input and documentation, providing us with a clear picture of your current privacy landscape (if you haven’t done a Scan with us before). This step ensures that our implementation plan is based on a thorough understanding of your specific situation.
(This step is also part of the Privacy Scan)
03 - Implementation Plan
Using the insights gained from our assessment, we’ll create a comprehensive implementation plan. This plan will detail all necessary actions, prioritised based on urgency and importance. We’ll also provide estimated workloads for each task, giving you a clear roadmap of the journey ahead.
(This step is also part of the privacy scan)
04 - Deliverables
Based on the priorities outlined in the implementation plan, we’ll draft or update the required deliverables. These typically include essential documents like
- Privacy Notices,
- Data Processing Agreements,
- a Record of Processing Activities and
- Data Breach Procedures.
We focus on creating clear, compliant, and practical documents that serve your organisation’s needs.
05 - Follow-up & Reporting
Throughout the implementation process, we maintain open lines of communication. Regular status meetings allow us to discuss progress, address any challenges, and submit draft deliverables for your approval. This iterative approach ensures that the implementation stays on track and aligns with your expectations.
What are the deliverables of a Privacy Implementation?
The deliverables for this project depend on what’s decided to be included in the scope. However, there are some documents that are almost always part of the implementation:
- Privacy Policy
- Privacy Notices
- Data Processing & Joint Controller Agreement templates
- Overview of required Data Processing & Joint Controller Agreements
- Records of Processing Activities (ROPA)
- Data Protection Impact Assessment (DPIA) template
- Data subject right procedures
- Data breach procedure
Implementing Privacy Procedures for Broeders van Liefde.
“Ensuring privacy is part of good care”, that’s what Broeders van Liefde believes in, and we wholly support this vision. Discover how we helped the healthcare institution to update and improve their privacy practices.
Meet the Team.
RANI VAN KWIKKELBERGHE
Senior Privacy Consultant & Domain Lead
NAFISSA LAMHAMDI
Principal Privacy Consultant
THEA DUJARDIN
Privacy Consultant
Frequently Asked Questions.
How long does a typical Privacy Implementation take?
The duration of a Privacy Implementation varies based on your organisation’s size and the scope of work required. While each case is unique, most organisations typically complete the process in about 3 months. We’ll provide a more accurate timeline after our initial assessment of your specific needs.
Do we need to have completed a Privacy Scan before starting the Implementation?
A Privacy Scan is beneficial but not mandatory. If you’ve completed a CRANIUM Privacy Scan, we can transition smoothly into implementation using those insights. Without a prior scan, we’ll conduct a thorough information gathering and analysis phase at the start of the implementation process to ensure we have a comprehensive understanding of your current privacy practices.
What happens after the implementation is complete? Do you offer ongoing support?
Privacy compliance is an ongoing process, not a one-time achievement. After implementation, maintaining and updating your privacy practices is crucial.
For organisations unable to manage this internally, we offer a DPO (Data Protection Officer) as a Service. This ensures continuous compliance and adaptation to evolving privacy regulations and your changing business needs. We can also offer DPO Coaching to one of your employees taking up the DPO- or Privacy Officer role.
What kind of involvement is required from our team during the implementation process?
Our approach is collaborative, requiring some involvement from your team to ensure the implementation aligns with your business practices. Typically, we need:
- A designated point of contact to coordinate activities and communications
- Input from key-stakeholders in various departments (e.g., IT, HR, Marketing, Legal)
- Participation in scheduled meetings and workshops
- Timely review and feedback on drafted documents and processes
- Assistance in gathering relevant information and documents
While we manage the bulk of the implementation work, your team’s insights and cooperation are crucial for a successful, tailored outcome. We’ll work with you to schedule engagements that minimise disruption to your daily operations.
CRANIUM is recognised by the Flanders Innovation & Entrepreneurship agency (VLAIO) as a service provider.
As an SME, you can receive up to 30% subsidy for our services. More information here.
DV.O225288
Ready to start implementing perfect privacy practices?
Do you want more information on our Privacy solutions, an offer or a commitment-free conversation about your needs?