We are pleased to announce that our regular customer Favro now officially complies not only with ISO 27001, but also with GDPR and ISO 27701 – personal information management.
Let us briefly share with you the process and the result of the work to implement compliance with the GDPR law.
The customer set us the task to implement PIMS (Privacy Information Management System) and organise its certification.
To do this, our team, together with the customer, audited the existing documents. Then we added them to the GRC (Governance, Risk, and Compliance) system. The next step in the project was the description of SoA (Statement of Applicability). Given the customer’s ISO 27001 certification, implementing the related standard ISO 27701 was easier than implementing the GDPR from scratch.
Finally, we organised a certification audit. During the certification process, we represented the interests of the customer and received the certificate exceptionally fast, in a few days.
As a result, the client was satisfied and we successfully closed this project.
Read more about the GDPR Implementation and Data Protection Officer (DPO) services.
_________________
Subscribe to our Telegram channel so as not to miss our news.