Assess the risk
MyData-TRUST is experienced in risk assessment services which can be performed either with a limited scope specifically towards GDPR compliance or with a broad scope towards enterprise IT security risk
We advise every company to start with a gap analysis to determine which process is critical and develop a mapping of all the data flows. It specifically determines whether regulatory requirements are being met and, if not, what steps should be taken. The analysis is done by some DPOs, who will highlight the high-risk processing activities and defines the key elements of the data processing activities. It allows to build up the first version of the Data Processing Activities Records.
How Does It Work?
- 1 or 2 days on site with 2 DPOs from the Life Science sector
- Expert Report: 100-pages professional report detailing our findings and recommendations and include a high-level action plan
- Debriefing meeting (2 hours)
- Presentation of the dedicated action plan
Following this first assessment, MyData-TRUST can perform some DPIA (Data Protection Impact Assessment), ISA (Information Security Assessment), Vendor/Provider Assessment (on site or remote), or anything related to GDPR compliance.