Tool-supported risk assessment according to GDPR
For data processing operations with a presumably high risk for the rights and freedoms of the individual, companies are obliged to carry out a so-called Data Protection Impact Assessment (DPIA) in accordance with the General Data Protection Regulation (GDPR). This requires identifying and evaluating possible risks. If individual risks are classified as high, remedial measures must be defined and implemented. A violation of this requirement can lead to fines and claims for damages.
The development of a methodology for the risk assessment is complex. It requires internal resources and special know-how in the field of risk standards.
At the same time, the methodology is typically only applied to a few processes, as only a low amount of processes carries the presumably high risk that requires a Data Protection Impact Assessment.
Because of the high effort of designing the DPIA concept for a comparably low number of applications resp. processes, an outsourcing to a service provider with a proven tool is highly beneficial.
Outsourcing of DPIA
Together with your IT colleagues, we carry out the Data Protection Impact Assessment for you using our software tool. In the tool, we inspect and assess over 2,000 potential risks in the relevant process on the basis of the IT-Grundschutz of the Federal Office for Information Security (BSI). Thereafter, we precisely derive the necessary protective measures and evaluate the residual risk in accordance with you. In the end, we prepare a final report which you can submit to the data protection authority as proof if required.
License the DPIA-Tool
Alternatively, you can license our tool and carry out the assessment by yourself. The benefits of the software at a glance
Modular structure of the assessment and automated workflow in the tool
Accepted public standard of the Federal Office for Information Security (BSI)
Assessment independent of size and across sectors
Extensive report on the results of the assessment
- License for corporate groups
- Unlimited number of users
- Result: risk assessment and report
- Includes 4 person-days and the use of the tool for the duration of the implementation
*assuming an averagely complex processing procedure and the provision of all relevant documents
Standardised Data Protection Impact Assessment
Please enter you company email address for further information.