GDPR Tools

With this checklist we explain to you which data you must include in a record of processing activities according to the General Data Protection Regulation (GDPR). We give you an explanation of each point and tell you what you need to keep in mind to comply with the legal obligations.

As an organization, you must determine which lawful basis you are relying on to ensure that your proposed processing is lawful. This checklist will help you assess whether you can invoke the legitimate interest basis for certain processing activities.

In some cases, companies are required by law to perform a Transfer Impact Assessment (TIA). In this road map we outline which steps you have to go through with a TIA.

If you engage a third party for the processing of personal data, such as an accountant or a marketing company, its responsibilities must be laid down and regulated in a data processing agreement. But how do you compile such a data processing agreement? What do you have to include? And what else can you think about? Through our data processing agreement checklist we provide you the tools to draft a sound data processing agreement and ensure that your agreements with data processors are clearly regulated.

How do you stay in control in the event of a data breach? By establishing a data breach protocol. But how do you do that? We explain this in this step-by-step plan. This way we help your organization to determine whether a data breach should be reported and how this should be done.