EUROPEAN INSTITUTE FOR

PRIVACY AUDIT, COMPLIANCE &

CERTIFICATION

 

 

GDPR CERTIFICATION CONSULTANCY

EIPACC helps you ‘ hands on’ along the way towards GDPR compliance, accountability and certification. The GDPR imposes a much stricter regulatory
framework for the processing of personal data within and outside the EU. In some instances, significant adjustments  are at hand and will need to start as a matter of urgency.  Qualified senior EIPACC staff easen up joint GDPR efforts and will get you on the right track.

 

GDPR CERTIFICATION ACADEMY

A comprehensive GDPR compliance and accountability training program for awareness-raising and training of staff involved in processing operations of the controller or the processor and the employees who carry out processing of their obligations pursuant to the GDPR is a mandatory obligation as can be derived from art. 39 (1) GDPR. EIPACC leading senior teaching staff is acknowledged for ‘problem-based GDPR learning’ accomodated by e-learning.

GDPR AUDITS & SEAL ISSUANCE

The controller shall implement appropriate technical and organisational measures to ensure and demonstrate that processing is performed in accordance with this Regulation. Those measures shall be reviewed and updated where necessary.  Adherence to approved certification mechanisms may be used as an element by which to demonstrate compliance with the obligations of the controller. (Art. 24 GDPR, partially).

GDPR AUDITS

According to Article 39 GDPR one of the tasks of the data protection officer is to to monitor compliance with this Regulation, with other Union or Member State data protection provisions and with the policies of the controller or processor in relation to the protection of personal data, including the assignment of responsibilities, awareness-raising and training of staff involved in processing operations, and the related audits.

GDPR COMPLIANCE

The responsibility and liability of the controller for any processing of personal data carried out by the controller or on the controller’s behalf should be established. In particular, the controller should be obliged to implement appropriate and effective measures and be able to demonstrate the compliance of processing activities with this Regulation, including the effectiveness of the measures. (Paragraph 74, GDPR Preamble)

CERTIFIED GDPR SEALS

According to Art. 42 (1) GDPR the establishment of data protection certification mechanisms and of data protection seals and marks should be promoted for the purpose of demonstrating compliance with the GDPR of processing operations by controllers and processors. The specific needs of micro, small and medium-sized enterprises shall be taken into account. EIPACC operates at the core of this rationale.

GDPR AUDIT, COMPLIANCE & CERTIFICATION UPDATES