The EU's new data protection law (GDPR) obliges organizations to take technical and organizational measures to guarantee the privacy of customers. These measures derive from rules for "rights of the data subject" and "obligations for the controller and processor".
We support organizations with the introduction of the GDPR and ensure an understandable and organization-specific approach. We can also objectively examine whether your current policy meets the GDPR requirements and to what extent it has been implemented in a verifiable manner.
Complying with GDPR
GDPR implementation is an organization-specific process. To avoid a scattergun approach, it is important to take a targeted approach. You can do this by mapping out the current situation of your organization with regard to the General Data Protection Regulation by means of our GDPR Compliance Scan.
The 2-Control GDPR Compliance Scan gives you insight in the required level of compliance for your organization. Based on our findings and recommendations, you can use our scan as a baseline measurement or as a starting point for the implementation of GDPR in your organization.
Request the GDPR Compliance Scan document here
In this document you can read how to become GDPR compliant and how 2-Control can support you in this.
Does the GDPR apply to you?
Unlike privacy laws in some other jurisdictions, GDPR applies to organizations of all sizes and all industries. In other words, there's a very good chance that you will have to comply with this.
This data protection law applies to:
- a company or entity which processes personal data as part of the activiteis of one of its branches established in the EU, regardless of where the data is processed; or
- a company established outside the EU offering goods/services or monitoring the behaviour of individuals in the EU.