SmartDPO (Protection of personal data in accordance with the GDPR Directive)
SmartDPO (Smart Data Protection Officer: SmartDPO) is a tool that enables comprehensive management of personal data and helps meet the obligations regarding personal data protection prescribed by the General Data Protection Regulation (GDPR).
Benefits
We provide our customers with:
Module introduction
The “Collections” module enables to keep up-to-date records of processing activities for controllers and processors of personal data. It contains the information required by Article 30 of the GDPR. Functionalities, such as interval automatic notification of updated data, recording of performed audits, automatic recording of change history (who, when changed or entered data), automatic generation of reports or. printout of records of processing, make it even easier to fulfil the obligations prescribed by the GDPR.
The module is linked to the Processors and Joint controllers modules.
Organization using SmartDPO either as a Controller or a Processor can use module »Processors« to record all processing and sub-processing of personal data.
The module enables the entry of mandatory components of a contract or other legal act as defined in Article 28 of the GDPR and chronological recording of controls performed at processors. Module can also serve as a reminder to the application user, when drafting a contract for the processing. At the same time, module provides easy review and administration of contracts by providing additional functionalities such as e.g. recording the history of entered data and their changes, as well as advanced search engines for processing.
The module enables transparent entry of data on the content of agreements, concluded by joint controllers in accordance with Article 26 of the GDPR. Like Collections and Processors module, this module is equipped with recording the history of entered data and a smart search engine according to the list of common controllers.
Data on processors and sub-processors of joint controllers can also be entered in the module.
The module provides support in managing the procedures for dealing with requests of individuals regarding the rights of data subjects from Chapter 3 of the GDPR. By using this module, companies have a complete overview of all received requests, both in terms of the time course of resolving the request as well as the documentation that arises in connection with the processing of the request. Automatic e-mail notifications of tasks and reminders by when a particular task needs to be completed make the requests resolution process easier for you.
This module helps you to resolve questions, investigate circumstances and find answers to perceived personal data breaches. Automatically generated notifications that you receive by e-mail, alert you to the deadline for submitting a notification of a detected personal data breach to the Office of the Information Commissioner and remind you to provide the required information to the administrator of the detected personal data breach. The module guides you through a process, that ultimately allows you to generate a report of a detected violation.
Do you receive requests from government agencies, law firms or other users who, based on various legal grounds, request personal information from your clients, employees,…? With the help of this module, you can easily keep a record of the submitted personal data with all the mandatory information. The module guides you through the steps to create a report and forward it to the applicant.
The module provides transparent control over the documentation generated during the inspection procedure or other control introduced by the Office of the Information Commissioner. By using the module, we gain a transparent insight into data on ongoing procedures, content and process administrators. A search engine with various attributes allows you to easily search by procedures.
In the DPIA (Data Protection Impact Analysis) module, we keep descriptions of all projects within which a personal data protection impact assessment was prepared and risk management measures were taken. The module reminds you of the essential aspects and principles that you need to address in the context of the DPIA implementation and allows you to transparently store all the documentation that has been created in this regard. A search engine with various attributes allows you to easily search for personal data impact assessments.
The audit trail module enables the recording, storage and reporting of personal data processing in electronic collections and manual entry of recording of personal data in physical collections. Audit traces of personal data processing are securely transferred from various electronic collections and stored in such a way that it is not possible to change and delete them. During the transfer, we enable the enrichment of audit trails of the processing of personal data from third sources, which helps ensure compliance and simplifies reporting. The module enables different types of reporting, depending on responsibilities and related access rights.