English|Italiano |Français

Consultancy in the European Privacy Regulation (GDPR)

Thanks to a team of experts in the fields of legal, ICT and WEB Security, eBusiness management and Data Processing, Edisfera offers to SMEs and PA, but also to professionals, privacy consulting services on the new EU Regulation 2016/679, also known as "GDPR", General Data Protection Regulation.

The consultancy concerns both compliance with the new European Privacy Regulation, and the impact of the application of the new EU Regulation on the processing and management systems and personal data protection, so far adopted.

Our experts have obtained a European certification CIPP/E (Certified Information Privacy Professional/Europe) and CIPM (Certified Information Privacy Manager), issued by the IAPP (International Association of Privacy Professionals).

Our consulting services offer the legal review of a Lawyer.

What activities characterize our GDPR consulting?

  GDPR Compliance Assessment

  • AS IS analysis
  • Privacy Risk Assessment

  GDPR Compliance Gap Analysis

  • Action plan

  GDPR Compliance Report

  GDPR Consultancy about:

  • DPIA (Data Protection Impact Analysis o DPO (appointment of a Data Protection Officer)
  • Governance: relations with external data controllers and managers
  • Information and consent o Privacy by design and by default
  • Data breach
  • Computer data security
  • Rights of data subjects (forgetfulness, deletion, portability, etc.)
  • Training and education of persons involved in treatment

  GDPR: Information notice - Privacy Policy - Cookie Policy

  GDPR Training plan

  GDPR External DPO

  GDPR: Integrated services to maintain "full compliance" over time

  • Design and implementation of an IT infrastructure that is adequate in terms of IT security
  • Definition of policies and procedures that manage the data processing
  • Implementation of Risk Analysis and definition of Action Plans to implement the appropriate data security measures
  • Drafting of the Privacy documentation, such as the Register of Treatments and the DPIA (Privacy Impact Assessment Document)
  • Consultancy in the management of Data Breach
  • Management of relations with the local and EU authorities responsible for monitoring;
  • DPO outsourcing functions

  Are you a company interested in more info?