dynamic-content-widget-e469d67-0a3e96e

1. Data Mapping

Working with your product development team, we map the lifecycle of personal data used in (or to support) the product: including where it comes from, what it’s used for, who would have access to it, where it’s stored, how it’s secured, etc.

What you’ll get.

A detailed privacy-focused data lifecycle map that will highlight potential privacy risks and security gaps related to the nature and method of the processing activities.

The map is designed to be a companion piece to be read alongside such documents as information architecture maps and use-case diagrams.

2. Draft RoPA

We will produce a Record of Processing Activities (RoPA) for your product detailing the ‘who, what, when, where, why and how’ of the personal data your product processes.

A draft RoPA to help you:

comply with Art.30 of the GDPR
manage data subject access requests (DSARs);
determine who (you or your customer) is acting as a controller or processor;

Advice on further analysis that’s required (such as LIA, PIA, or DPIA), for each use of data, and who is responsible for completing them.