View Templates – EU GDPR

View Template – EU GDPR


01 - Template Register - EU GDPR

A register of templates used to document compliance with EU GDPR.

02 - Data Protection Policy - EU GDPR

Template data protection policies and procedures detailing guidelines, roles and responsibilities on how the organization manages personal data protection.

03 - Training Policy - EU GDPR

Training and awareness policy detailing how GDPR awareness training is administered and managed within your organisation

04 - Training Plan - EU GDPR

A register that documents the goals of your GDPR training, learning outcomes, targets and how training will be delivered

05 – Audit Management Policy – EU GDPR

Management policies on audit management detailing audit responsibilities with respect to compliance with data protection regulations

06 - Audit Schedule - EU GDPR

A list of your planned audit of your privacy and data protection practices with dates and auditor and whether internal or external

07 - Audit Report - EU GDPR

A detailed report on the audits performed internally showing a summary of your compliance with GDPR and data protection techniques

08 - Privacy Policy - EU GDPR

Privacy policies and procedures detailing guidelines, roles and responsibilities on how the organization manages the privacy of personal data held

09 - ROPA - EU GDPR

A log or record that documents all of your business's data types and categories of processing activities involving personal data

10 - Subject Rights Notifications - EU GDPR

Contains notification samples to be used when notifying subjects on data accuracy, changes to privacy policies and responses to subject access requests.

11 - Data Retention Policy - EU GDPR

A policy document that clarifies what personal data should be stored or archived, where that should happen and for how long.

12 - Data Retention Schedule - EU GDPR

A list of personal data types processed along with information on how long to keep them and when to delete them.

13 - Protection Techniques Register - EU GDPR

A list of the technical measures and methods taken by your organisation to ensure the protection of personal data..

14 - Information Security Policy - EU GDPR

Policies and procedures that aims to enact protections and limit the distribution of personal data to only those with authorized access.

15 - Security Certifications Register - EU GDPR

A log of local and international security standards certifications achieved by the organisation that compliment GDPR data protection controls.

16 - Personal Data Inventory - EU GDPR

A list or record of all personally identifiable data housed within your organization including categories, sources and storage.

17 - Policies Register - EU GDPR

A compendium of all information security and data protection related policies, procedures and guidelines approved and implemented within your organisation.

18 - Consent Policy - EU GDPR

Consent management policies and procedures detailing guidelines, roles and responsibilities on how the organization manages personal data consent.

19 - Consent Collection Points - EU GDPR

A register or log of all collection points or forms from which you collect personal data for processing and review to ensure compliance with GDPR.

20 - Consent Register - EU GDPR

A record or log of all personal data privacy notices displayed to and the corresponding consents received from data subjects.

21 - Web Forms - EU GDPR

The general structure of form fields to be used to collect personal data when interacting with data subjects with respects to rights.

22 - Data Subjects Rights Policy - EU GDPR

The policy sets out how your organization seeks to enable data subjects to exercise their rights in accordance with the legislation.

23 - Data Subjects Rights Request Register - EU GDPR

This document is used to register all the requests that the company receives from the data subjects for the exercise of rights.

24 - Cookies Policy - EU GDPR

A collection of legal statements that disclose some or all of the ways a website gathers, uses, discloses, and manages cookies.

25 - Privacy Notices - EU GDPR

Provides information regarding the categories of personal data handled, the legal justification for processing personal data, and the data provided to third parties..

26 - Privacy Notices Register - EU GDPR

A document log where all the published notices are listed, together with basic information about each notice.

27 - Subject Access Request Policy - EU GDPR

Document outlines the policies and procedures your organization will take when a data subject requests a copy of their personal data.

28 - Subject Access Request Register - EU GDPR

A log or record of all subject access requests received from data subjects in other to evidence the requests received and ensure timelines are met.

29 - Data Breach Policy - EU GDPR

Management policies detailing guidelines, roles and responsibilities on how the organization manages personal data breaches.

30 - Data Breach Register- EU GDPR

A log of personal data breaches that have occurred in your organization showing your assessment and reports of the data breaches.

31 - Data Breach Notifications - EU GDPR

General guidelines and report template used to notify applicable stakeholders where a high risk personal data breach has occurred.

32 - DPO Job Description - EU GDPR

A document that clearly states the job requirements, job duties, job responsibilities, and skills required to perform the DPO role - and outlining the required experience.

33 - DPO Appointment Letter - EU GDPR

Sample written agreement that describes the business relationship to be entered into by the DPO and your organization.

34 - Outsourced DPO Agreement - EU GDPR

Legally signed agreement to be used as a guideline between your organisation and an external appointed data protection officer.

35 - DPO Skills Assessment & Verification - EU GDPR

A matrix template which can be used to perform an assessment of a DPOs skills including verification of qualifications and credentials.

36 - DPIA Policy - EU GDPR

Policies that procedures on the assessment of the impact of envisaged operations on the protection of personal data.

37 - DPIA Register - EU GDPR

A register of information that describes the risks associated with a project and assess their likelihood and impact.

38 - Third Party Management Policy - EU GDPR

Outlines the company's requirements in relation to dealings and interactions with third parties with respect to personal data processing.

39 - Data Processor Agreement - EU GDPR

An agreement between a data controller and a data processor that states the rights and obligations of each party concerning the protection of personal data.

40 - Declaration Requests - EU GDPR

Declaration request forms used to obtain signed self declarations from data processors and staff as it relates to data protection.

41 - Declaration Tracker - EU GDPR

A log of self declaration from data processors or staff attesting to training and awareness on the organizations data protection policies.

42 - Contractor Register - EU GDPR

A log of all contractors or third parties that support your organization with personal data processing.

43 - Contract Register - EU GDPR

A log of data processor contracts and agreement across all processing activities within your organization.

44 - Joint Controller Agreement - EU GDPR

An agreement used to regulate the mutual relations between the parties as regards the joint control of Personal Data processing.

45 - Backup Policy - EU GDPR

Management policies on backup management detailing how the organization schedules, takes backup and restores personal data.

46 - Privacy by Default Policy - EU GDPR

Policies provide guidance on the organization's approach to ensuring that it embeds privacy by design and privacy by default across its personal data processing operations.

47 - Information Risk Management Policy - EU GDPR

An IRM policy template that sets out the principles that an organization uses to identify, assess and manage information risk.

48 - Information Risk Register - EU GDPR

A log of information risks identified by the organization, the assessments and the responses taken mitigate such risks.

49 - Complaints Policy - EU GDPR

Details guidelines, roles and responsibilities on how the organization manages personal data related complaints.

50 - Data Protection Jurisdictions - EU GDPR

A list of your personal data processing jurisdiction and their respective supervisory authorities as it relates to your operations.

51 - Complaints Register - EU GDPR

A log of the status and details of personal data complaints from data subjects received by your organization.

52 - GDPR Representative Job Description - EU GDPR

A document that clearly states the job requirements, job duties, job responsibilities, and skills required to perform the Representative role - and outlining the required experience.

53 - GDPR Representative Agreement - EU GDPR

Legally signed agreement to be used as a guideline between your organisation and a nominated GDPR representative.

54 - Representative Log - EU GDPR

A list of all operational jurisditions and assessment on the requirement for a data protection representative.