Of course, you can figure out everything by yourself, become an expert, and advise your company. However, it will be a thorny path of trial and error that may last for several years.
If you need to create or modify a privacy-friendly product that complies with the GDPR in a short time, then our outsourced Privacy Engineering Team is ready to solve this problem.
PETeam is a team formed by a certified GDPR expert, an engineer (software architect), and, if necessary, one or more programmers. All you need to do is to test the work and implement solutions.
We make a product audit: we determine the need and possibility of a PETeam intervention. For example, we've looked at a small product and have made one of the following expert assessments: 1) changes are necessary and possible; 2) you do not need any changes; 3) it is cheaper to rewrite it from scratch.
If we decide to join your project, an onboarding of our team is carried out. We study the goal, processes, architecture, style, design, data flows, and processing, and get familiar with the development methodology in the team. We select personal data in the data model and where and how they are stored and processed.
We plan further improvements by developing a list of tasks (scope of the work), stages, blocks, evaluating them, and planning sprints.
We participate in team development, consulting, meetings, and brainstorming. We participate in the testing and finalization of the product.
We conduct a final product audit, acceptance testing, and prepare the report.
Results: optimization of processes (workflow), added required functionality (automatization of the exercise of the subject's rights, setting up system rules for data deletion, and development of customized documentation (privacy notice, checkboxes, cookie banner, DPA, SCC, Declaration of GDPR compliance, etc.)). Your team gains experience and knowledge in the implementation of the upcoming projects and tasks.
The cost is based on the results of the audit. Payments are made on a monthly basis for the team and completed tasks.
Chances are extremely low, but this will become clear in the course of the first audit. We have cases when we might have to refuse the product or rewrite it from scratch, but we had found simple and creative solutions and “had saved” the created product.
Also, we will not need to remake the product if the errors in it have a minimal level of risk and you can accept them. We will inform you about all the shortcomings and their level of risk. Thus, you will be able to make an informed decision about the changes that should be implemented and the optional changes.
If you have a lot of employees and there are no product launch deadlines, you can devote a year or two to the improvement of employees' skills, hiring an external GDPR consultant, and searching for the optimal technical solution using the search method.
However, if you need to do the work effectively and in a short period of time, one would agree that it's easier to hire a team that already has relevant experience and knowledge. All our developers have experience in implementing the GDPR at the technical level (privacy engineer).
We assume legal obligations by signing non-disclosure and non-compete agreements. We are also ready to consider working on your devices and in your offices.
It depends. As a rule, it will be more expensive to train your employees, discover violations of the Regulation, find a suitable solution, and conduct an audit than to hire our team.
However, it is cheaper to work with us than to pay a fine, rewrite the entire product, and cede the EU market to competitors. In particular, we invite only competent and experienced specialists with a unique specialization who have a high value in the labor market to join our team. Thus, by hiring our PETeam, you invest in high-quality work and guaranteed results within the planned time frame. And only you decide how valuable it is.
Because your tester knows the product, and it would be quite expensive to transfer this knowledge. Therefore, to ensure better quality, we recommend you using your tester.
We conduct a final audit and sign a report that can be shown to supervisors and partners. The audit is conducted by professionals from Data Privacy Office LLC who are internationally certified and do not participate in the development team.
You can also order an audit from a third-party company, and if they discover clear violations of the Regulations, we are ready to eliminate them at our own expense.
We are ready to work in a separate branch without having full access to the entire product.
We implement an internal Code Review. Moreover, we ask you to provide us your employees for an external Code Review.
A unique feature of our company is that if there is a way to balance privacy requirements and customer's financial interests, we will do it for you. Besides, we will confirm all the tasks needed for embedding the GDPR in your product with the project stakeholders.
We bring together a team of experienced and competent specialists who can adequately assess the deadlines.
At each sprint, we will show you the completed tasks. We will also give you access to our team's Burn Down Chart.
Fill out the form and you will:
✓Be able to ask questions in the field of personal data protection.
✓ Find out if this product is suitable for your company or project.
✓ Get directions on cost, duration, and other details.
We will be happy to talk and schedule an online meeting with a privacy expert!
P.S. You think that none of the services listed on our site suits you? Please describe your situation in the "Comment" field. We are very flexible and always offer customized solutions.