Preparing for GDPR certification
Fulfillment of requirements of GOST R 57580
Post-service support
Preparing documents for the regulator
More than 10 years on the market
What is GDPR
The General Data Protection Regulation (GDPR) regulates how companies must protect the personal data of EU citizens. EU law defines this data as Personal Data or Personally Identifiable Information (PII). The document came into force in 2018 and affects even organizations that are registered in other countries and do not have branches in the EU, but process the data of European citizens
Key requirements
GDPR privacy
and data protection requirements include:
GDPR establishes a basic set of standards for companies processing personal data of EU citizens to better protect that data
Legality of the processing of user data (consent, legitimate interest, etc.)
Appointment of a DPO (data protection officer) to monitor compliance with GDPR
Sending notifications about data leaks
Safe operation of processors (contractors)
Pseudonymization of data where possible
Secure data transfer across the borders of the European Union
Conducting assessments of the impact of new measures/processes on data protection
Sensible approach to safeguarding and employee awareness "not just for the sake of ticking boxes"
Why perform a GDPR compliance check
GDPR applies to everyone
Individuals and legal entities operating in Europe or targeting EU citizens, as well as those who provide data processing services
The regulation affects all types of PII
Full name, date of birth, address, phone number, email, photo, link to personal website, links to social media profiles, etc.
There are fines for violating GDPR
Up to €20 million or 4% of total annual turnover, whichever is greater
During an audit, ITGLOBAL.COM Security specialists check:
- Composition of data
- Lawfulness of the grounds for data processing
- Organizational policies and procedures
- Employee awareness
- Compliance with the rights and interests of subjects
- Employee awareness
- Processor agreements and third-party interactions
- Records management and security
What is included in the service
Study of processes
Private cloud implementation for high load databases. With the ability to host one database on one dedicated server, up to 6 TB RAM per server
GDPR compliance check
Private cloud implementation for high load databases. With the ability to host one database on one dedicated server, up to 6 TB RAM per server
Analyzing IS risks
Private cloud implementation for high load databases. With the ability to host one database on one dedicated server, up to 6 TB RAM per server
Preparing for GDPR compliance
Private cloud implementation for high load databases. With the ability to host one database on one dedicated server, up to 6 TB RAM per server
Preparation of documentation
Private cloud implementation for high load databases. With the ability to host one database on one dedicated server, up to 6 TB RAM per server
What you get
Based on the results of the analysis, ITGLOBAL.COM Security specialists develop a data flow map, roadmap and expert recommendations on how to comply with GDPR requirements, as well as provide justifications for the appointment of DPOs and DPIAs. During the audit, we work with you to develop an optimal set of measures to be taken and explain the requirements of the regulation in terms of your specific activities.
In addition, we analyze compliance with the local legislation of the country where you are located or plan to be located.
Our clients