GDPR Compliance & Audit
Personal data has increasingly significant social, economic and political value. The EU’s recent General Data Protection Regulation (GDPR - 2016/679) disrupts the landscape in which businesses and organizations collect, store, manage and exploit personal data, introducing new requirements and hidden opportunities. The General Data Protection Regulation (GDPR - 2016/679) will automatically apply in all member states from 2018 without further national legislative proceedings. It should be noted that the fines provided for in cases of non-compliance amount to 4% of the Turnover of the Enterprise (or of the Group of Companies, regardless of which undertaking is the infringement) and applies to both EU and nonEU establishments that directly or indirectly deal with the personal data of EU residents.
AQS undertakes the preparation of the Organizations for the GDPR Compliance, by covering all of its aspects, IT, Legal, and Organizational.
GDPR Compliance Methodology
- Infrastructure Audit
- Data Recording
- Process Audit
- Data Categorization
- Gap Analysis
- Risk Assessment
- Design of Policies, Procedures & Control and Deterrence measures
- Implementation Audit
Indicative methodology for implementation of Compliance is presented in the following diagram: