View Template – EU GDPR
01 - Template Register - EU GDPR
A register of templates used to document compliance with EU GDPR.
02 - Data Protection Policy - EU GDPR
Template data protection policies and procedures detailing guidelines, roles and responsibilities on how the organization manages personal data protection.
03 - Training Policy - EU GDPR
Training and awareness policy detailing how GDPR awareness training is administered and managed within your organisation
04 - Training Plan - EU GDPR
A register that documents the goals of your GDPR training, learning outcomes, targets and how training will be delivered
05 – Audit Management Policy – EU GDPR
Management policies on audit management detailing audit responsibilities with respect to compliance with data protection regulations
06 - Audit Schedule - EU GDPR
A list of your planned audit of your privacy and data protection practices with dates and auditor and whether internal or external
07 - Audit Report - EU GDPR
A detailed report on the audits performed internally showing a summary of your compliance with GDPR and data protection techniques
08 - Privacy Policy - EU GDPR
Privacy policies and procedures detailing guidelines, roles and responsibilities on how the organization manages the privacy of personal data held
09 - ROPA - EU GDPR
A log or record that documents all of your business's data types and categories of processing activities involving personal data
10 - Subject Rights Notifications - EU GDPR
Contains notification samples to be used when notifying subjects on data accuracy, changes to privacy policies and responses to subject access requests.
11 - Data Retention Policy - EU GDPR
A policy document that clarifies what personal data should be stored or archived, where that should happen and for how long.
12 - Data Retention Schedule - EU GDPR
A list of personal data types processed along with information on how long to keep them and when to delete them.
13 - Protection Techniques Register - EU GDPR
A list of the technical measures and methods taken by your organisation to ensure the protection of personal data..
14 - Information Security Policy - EU GDPR
Policies and procedures that aims to enact protections and limit the distribution of personal data to only those with authorized access.
15 - Security Certifications Register - EU GDPR
A log of local and international security standards certifications achieved by the organisation that compliment GDPR data protection controls.
16 - Personal Data Inventory - EU GDPR
A list or record of all personally identifiable data housed within your organization including categories, sources and storage.
17 - Policies Register - EU GDPR
A compendium of all information security and data protection related policies, procedures and guidelines approved and implemented within your organisation.
18 - Consent Policy - EU GDPR
Consent management policies and procedures detailing guidelines, roles and responsibilities on how the organization manages personal data consent.
19 - Consent Collection Points - EU GDPR
A register or log of all collection points or forms from which you collect personal data for processing and review to ensure compliance with GDPR.
20 - Consent Register - EU GDPR
A record or log of all personal data privacy notices displayed to and the corresponding consents received from data subjects.
21 - Web Forms - EU GDPR
The general structure of form fields to be used to collect personal data when interacting with data subjects with respects to rights.
22 - Data Subjects Rights Policy - EU GDPR
The policy sets out how your organization seeks to enable data subjects to exercise their rights in accordance with the legislation.
23 - Data Subjects Rights Request Register - EU GDPR
This document is used to register all the requests that the company receives from the data subjects for the exercise of rights.
24 - Cookies Policy - EU GDPR
A collection of legal statements that disclose some or all of the ways a website gathers, uses, discloses, and manages cookies.
25 - Privacy Notices - EU GDPR
Provides information regarding the categories of personal data handled, the legal justification for processing personal data, and the data provided to third parties..
26 - Privacy Notices Register - EU GDPR
A document log where all the published notices are listed, together with basic information about each notice.
27 - Subject Access Request Policy - EU GDPR
Document outlines the policies and procedures your organization will take when a data subject requests a copy of their personal data.
28 - Subject Access Request Register - EU GDPR
A log or record of all subject access requests received from data subjects in other to evidence the requests received and ensure timelines are met.
29 - Data Breach Policy - EU GDPR
Management policies detailing guidelines, roles and responsibilities on how the organization manages personal data breaches.
30 - Data Breach Register- EU GDPR
A log of personal data breaches that have occurred in your organization showing your assessment and reports of the data breaches.
31 - Data Breach Notifications - EU GDPR
General guidelines and report template used to notify applicable stakeholders where a high risk personal data breach has occurred.
32 - DPO Job Description - EU GDPR
A document that clearly states the job requirements, job duties, job responsibilities, and skills required to perform the DPO role - and outlining the required experience.
33 - DPO Appointment Letter - EU GDPR
Sample written agreement that describes the business relationship to be entered into by the DPO and your organization.
34 - Outsourced DPO Agreement - EU GDPR
Legally signed agreement to be used as a guideline between your organisation and an external appointed data protection officer.
35 - DPO Skills Assessment & Verification - EU GDPR
A matrix template which can be used to perform an assessment of a DPOs skills including verification of qualifications and credentials.
36 - DPIA Policy - EU GDPR
Policies that procedures on the assessment of the impact of envisaged operations on the protection of personal data.
37 - DPIA Register - EU GDPR
A register of information that describes the risks associated with a project and assess their likelihood and impact.
38 - Third Party Management Policy - EU GDPR
Outlines the company's requirements in relation to dealings and interactions with third parties with respect to personal data processing.
39 - Data Processor Agreement - EU GDPR
An agreement between a data controller and a data processor that states the rights and obligations of each party concerning the protection of personal data.
40 - Declaration Requests - EU GDPR
Declaration request forms used to obtain signed self declarations from data processors and staff as it relates to data protection.
41 - Declaration Tracker - EU GDPR
A log of self declaration from data processors or staff attesting to training and awareness on the organizations data protection policies.
42 - Contractor Register - EU GDPR
A log of all contractors or third parties that support your organization with personal data processing.
43 - Contract Register - EU GDPR
A log of data processor contracts and agreement across all processing activities within your organization.
44 - Joint Controller Agreement - EU GDPR
An agreement used to regulate the mutual relations between the parties as regards the joint control of Personal Data processing.
45 - Backup Policy - EU GDPR
Management policies on backup management detailing how the organization schedules, takes backup and restores personal data.
46 - Privacy by Default Policy - EU GDPR
Policies provide guidance on the organization's approach to ensuring that it embeds privacy by design and privacy by default across its personal data processing operations.
47 - Information Risk Management Policy - EU GDPR
An IRM policy template that sets out the principles that an organization uses to identify, assess and manage information risk.
48 - Information Risk Register - EU GDPR
A log of information risks identified by the organization, the assessments and the responses taken mitigate such risks.
49 - Complaints Policy - EU GDPR
Details guidelines, roles and responsibilities on how the organization manages personal data related complaints.
50 - Data Protection Jurisdictions - EU GDPR
A list of your personal data processing jurisdiction and their respective supervisory authorities as it relates to your operations.
51 - Complaints Register - EU GDPR
A log of the status and details of personal data complaints from data subjects received by your organization.
52 - GDPR Representative Job Description - EU GDPR
A document that clearly states the job requirements, job duties, job responsibilities, and skills required to perform the Representative role - and outlining the required experience.
53 - GDPR Representative Agreement - EU GDPR
Legally signed agreement to be used as a guideline between your organisation and a nominated GDPR representative.
54 - Representative Log - EU GDPR
A list of all operational jurisditions and assessment on the requirement for a data protection representative.