The General Data Protection Rule (GDPR) has taken effect since May 25th of 2018 and requires organizations and enterprises to handle personal data with care and to implement the related GDPR legislation. In this context, more and more companies are asking their suppliers to provide processing agreements and request guarantees on the correct processing of personal data. This process will inevitably lead to the general introduction of GDPR compliancy into the community of European companies.
Unicon Solutions provides a comprehensive solution package of GDPR services, guiding your company throughout the entire process of implementation, from the design of the roadmap to the GDPR implementation phase and the follow up phase.
As legislation tends to change and mature, this approach ensures that your company becomes GDPR compliant today, but also remains compliant in the future.
What is our GDPR service offering?
A GDPR implementation track may strongly differ from one company to another, depending on the nature of business activities (BtoB, BtoC), the scale of the processing and the sensitivity of the personal data.
For this reason, it is difficult to provide a one-fits-all solution and hence each company will require a customized approach.
Moreover, different domains of knowledge are required in a successful GDPR implementation. Very often, legal, technical and educational aspects are intertwined and need to be carefully coordinated by an experienced project leader.
In order to take care of this complexity, Unicon provides a customized approach by providing three different service packages that together form a comprehensive and chronological GDPR approach.
Assesment & Roadmap
First we make a GDPR assessment of your company.
By a combination of structured questions and interviews, we are mapping the personal data and the related processing flows in each business department.
During this assessment phase we investigate the lawfulness of processing or whether an explicit consent from the data subject is needed.
Also we investigate the purposes of the personal data collection and where and how long the data will be stored.
At the same time, we will check whether the personal data are sufficiently secured and whether your company needs to comply to other GDPR regulations (such as the need of a DPO officer, a DPIA analysis in case of sensitive data, and data breach procedures)
GDPR Project management and implementation
Using the roadmap from the previous phase, we are now ready to create a concrete planning for the action plan to be implemented. Based on our experience, we know that a successful GDPR implementation needs to cover the following three aspects:
Technical Data Protection
This consist of reviewing and reinforcing the technical and organisational measures, according standards (such as ISO 27001), in order to make sure that personal data are protected against loss, theft or unauthorised access.
Consists of adapting or creating a number of legal documents, such as the Privacy Notice, the processing agreements, general contract agreements and data processing agreements.
HR and Communication
It is very important to anchor the privacy culture strongly into the DNA of the company.
Therefore, it is advisable for your company to create a single point of contact for all privacy related issues. Moreover, employees should be trained in such away that sufficient awareness is created on how to handle personal data from clients, prospects, employees and suppliers, but also on how to fulfill the specific privacy rights and which procedures need to be followed (e.g. in case of data breach).
Why choose Unicon Solutions?
A holistic vision and a project driven GDPR approach
We are using a comprehensive approach of the GDPR implementation, where juridical, technical and communication/HR aspects are carefully blended.
Based on many years of experience in project management, we take care of a balanced and realistic project plan that is taking into account the interaction between different teams and disciplines.
A pragmatic approach customised for your company
In reality your company, whether big or small, may be processing sensitive personal data or may be using data profiling. All these contexts are different and may cause big differences in effort and laps time during the GDPR implementation track.
However, thanks to our 3 phased approach, your company keeps a full overview of the GDPR project and you are able to determine which part you would like to implement yourself.
A team with broad experience
Unicon project leaders have many years of experience, know how to motivate people and how to make change happen, making sure that a new privacy culture gets firmly anchored into your company.
A complete service offering, for implementation and follow up
Thanks to our multidisciplinary approach, we take care of a comprehensive GDPR project implementation. Moreover, after completion of the GDPR implementation, we offer a GDPR support package, making sure that your privacy procedures are getting continuously finetuned and are kept in pace with changing legislation and the evolution of your company.