According to the Regulation, during Compliance, the company/organization is required to:
- to investigate the current situation of the company/organization
- record Personal Data processing procedures and analyze them
- take the appropriate measures to bring it into full compliance with the regulation
- export the information to compliance reports
- create policies for maintaining compliance
Compliance
eComplianceGDPR:
- Organizes and groups all the data and partners of the company/organization in an easy way
- Simplifies the recording and analysis of all Personal Data processing procedures
- It automatically exports the Activity Log, recording all the information required in accordance with Article 30 of the Regulation.
- Directly exports personal data flowcharts to prove the compliance of the company/organization.
- Exports the GAP ANALYSIS per process and per deviation according to the needs of the company/organization.
- It generates a Risk Assessment for processing security (RISK ASSESSMENT) for each Personal Data processing procedure through simple questions.
- Automatically exports specific legal and organizational measures as a whole and per process
- Proposes specific measures for the security of information systems and physical archives
- Implements automated control for the requirement to conduct a Data Protection Impact Assessment (DPIA) based on the standard of the Regulation and the Greek Authority.
- Provides a complete library of compliance templates (Policies, Operating Procedures, Consent Forms, Security Plan, Disaster Recovery Plan, etc.)
- Supports the creation of a team of executives who will form the core of the business/organization’s compliance efforts.
- It records the progress made in implementing compliance measures, highlighting any outstanding issues.
Monitoring
According to the Regulation, during Compliance Monitoring, the company/organization is required to:
- monitor the compliance of the company/organization with the GDPR regulation
- carry out the necessary checks on the staff and procedures of the company/organization
- to monitor the proper implementation of measures
- modify the compliance of the company/organization for any changes that occur
- organize training and awareness-raising activities for staff
eComplianceGDPR:
- Simplifies the recording of changes that occur in the operation of the business/organization and may affect PD processing procedures.
- Proposes amendments to Compliance and creation of a new Personal Data Processing Stage
- Maintains the history of Compliance modifications and keeps a record of previous Stages
- Automatically exports updated legal and organizational measures and measures for the security of information systems and physical archives in case of deviations
- Exports all automated compliance reports affected by the changes made
- Organizes the conduct of re-audits of Compliance implementation at regular or irregular intervals
- Sends specialized questionnaires to all staff based on their responsibilities, for the continuous monitoring of the compliance of the company/organization.
- Exports statistics on compliance maintenance per employee
- Organizes staff training and awareness activities and automated emailing and reminders to staff
- Maintains training materials for immediate access by staff at any time
- Keeps records of staff training for verification in case of inspection
Accountability
According to the Regulation, during the Accountability process, the company/organization is responsible for:
- Demonstrate the compliance of the company/organization
- Respond to requests from subjects to exercise their rights
- Respond to any audits or other inquiries from the APDPCH
- Record incidents of personal data breaches
eComplianceGDPR:
- Maintains a complete library of accountability and compliance documentation, such as:
– Activity Log
– Policies
– Operating Procedures
– Flowcharts
– Risk Assessment, etc. - Records and keeps a file of requests from data subjects to exercise their rights
- It automatically generates reports on how the personal data of data subjects is processed with regard to:
– The personal data collected
– The purposes of collection
– The storage locations
– The external recipients of the data - Records and maintains a file of Contracts with integrated terms relating to the protection of Personal Data
- Records and maintains a Personal Data Destruction Register
- Records and maintains a Personal Data Breach Incident Register in accordance with the GDPR Regulation.
- Automatically exports reports of personal data breaches
eComplianceGDPR
Specialized editions
Specialized versions of the eComplianceGDPR application
The development department of BEE GROUP AE listens to the needs of businesses regarding their compliance with Regulation EU679/2016GDPR and continues to actively improve eComplianceGDPR. We have created and promote the following specialized versions of the application:
- e-ComplianceGDPR – Hotel for hotel units of all categories
- eComplianceGDPR – Travel for tourism and travel agencies
- eComplianceGDPR – University for higher education institutions (universities, post-secondary schools).
- eComplianceGDPR – Lifelong Learning Centers for lifelong learning centers, primary and secondary schools, secondary education tutoring centers, foreign language centers, educational units, etc.
- eComplianceGDPR – Physio for physiotherapy clinics
which are enriched with personal data processing procedures relevant to each type of business and include specific examples and guidelines referring to compliance in these sectors, making compliance even simpler and faster. It is aimed at businesses in these specific sectors and Compliance Advisors, enabling them to achieve and maintain compliance in the best and easiest way possible.
Demo version of eComplianceGDPR
Explore the eComplianceGDPR application now through its limited demo version. Η άδεια χρήσης δίνεται για περιορισμένη χρονική διάρκεια.
For more details, please contact us at:
