Entrust DPO responsibility with certified professionals to comply with Article 37 of the GDPR and become GDPR-compliant!
The GDPR requires the appointment of a DPO (Data Protection Officer), that is, a person responsible for the protection of personal data in cases where your company, by the nature of its activity:
A DPO is needed so that all processes for protecting personal data have a single owner (process owner), who coordinates the efforts of many departments and is responsible for it. In addition, a DPO will be able to help the organization in maintaining its GDPR compliance as:
It is good to have a competent DPO on staff, as:
However, there are very few competent DPOs. According to some estimates, in the EU alone it is now necessary to hire more than 75,000 full-time DPOs. Trained specialists are sorely lacking even in Western Europe, not to mention the CIS countries.
Therefore, domestic companies often appoint one of the existing employees to the DPO role, increasing their workload, as well as investing considerable time and money in her/his training in GDPR, for example, in our Data Privacy Professional course.
At the same time, there is always a risk that the DPO trained with your financial resources will go to another organization, where s/he will be offered better conditions.
It is also a common story when personal data tasks, assigned as a part-time job to an employee, are postponed "for later", since the main job remains the priority.
The lawyer, appointed by the Data Protection Officer, often continues to work on coordinating business contracts, postponing technical measures that he does not understand.
In accordance with the Regulation, the DPO function can be outsourced.
This is often the most profitable decision, because you get an experienced and competent specialist who is able to quickly make decisions on the GDPR and be responsible for them.
What benefits will the company ultimately receive?
Transfer personal and organizational responsibility for GDPR to competent professionals and a specialized company:
And most importantly: our experts sincerely love and cherish their work, unlike the employee who was assigned to deal with the GDPR, and for whom this is “another headache”.
The regulation prescribes to have a DPO for the period until the main activity of the company falls under Art. 37 GDPR, that is, in fact - on an ongoing basis.
We conclude contracts for outsourcing this role for 1 or 2 years. And extend them, if necessary.
Such a long period is necessary because our DPOs usually begin their work by bringing your company in line with GDPR. This task alone can take several years, subject to the active cooperation of your staff. Therefore, we recommend starting cooperation with the “Full” service package.
In the future, a DPO will be required for all changes in the company, for example, a new project, process or branch, new employees or contractors. But his involvement may be lower, and fewer hours of work will be required.
|Hours per year||60||120||180|
|€ per hour|
|Format||remotely||remotely||remotely and on site|
|Reports||annually||annually||annually and quarterly|
|Gift 1||GDPR Aware training for 3 hours, up to 200 persons. (€1000)||GDPR Aware training for 3 hours, up to 200 persons. (€1000)|
|Gift 2||GDPR Data Privacy Technologist (GDPR DPT) training up to 20 persons. (€4000)|
|Annual internal audit||+|
|Payment||For 1 year||quarterly||quarterly|
Fill out the form and our staff will contact you within 30 minutes