Privacy Health Check Survey

To establish a base-line it may be necessary to assess current awareness and compliance with the GDPR. It will provide us a good starting point for moving your organisation to compliance with the GDPR by exploring the needs that occur and to consider existing policies and procedures. This is not intended as an in-depth analysis but as a reference of your organisation to date.
Most of the time you will need to ask various departments of your organisation for responses.

YesNo YesNo YesNo

Not in place: the controle mechanisms are not in place
Initial: the control mechanisms are controlled ad hoc
Standard: the control mechanisms are documented
Defined: the control mechanisms are well documented, communicated and understood
Managed: the control mechanisms are defined & being measured
Optimalized: the control mechanisms are acively measured, evaluated and optimalized

Not in placeInitialStandardDefinedManagedOptimalized Not in placeInitialStandardDefinedManagedOptimalized Not in placeInitialStandardDefinedManagedOptimalized Yes, from EU countriesYes, from non-EU countriesNo YesNo
YesNo YesNo YesNo

Personal data is defined in the GDPR as any information relating to a natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that person.

EmployeesCustomersSuppliersChildrenOther Employee administrationCustomer administrationLegal obligationMonitoringMarketingProfilingServices to third partiesOther YesNoOther Consent of data subjectNecessary for the performance of a contract YesNo YesNo
YesNo ITLegalBusinessother InternalExternal YesNo YesNo

We need some information to contact you with the results