The philosophy of Risk In Deep is to pool the functions available through the modules illustrated above, with those specialised for the different Compliance, in order to reuse the results obtained previously, reducing overlaps of similar activities and speeding up the conclusions.
For the Privacy Compliance module, it is possible to prepare the Processing Activity Register by exploiting the visual capabilities offered by the Entity Model module in order to represent the links between the different elements of the Register (Processing/Processes, Data, Tools supporting data processing). Subsequently, it will be possible to value the attributes that will make up all the items in the Register (e.g., purpose of processing, legal basis, type of personal data, data retention, etc.).
Similarly, the values calculated for the Inherent Risk and the Residual Risk, together with the security measures, may be used to make the Data Protection Impact Assessment consistent.
Register of Processing Activities
For each processing Entity for which personal data are associated, it will be possible to enhance the information required by Article 30 of the GDPR and export it all in Excel format.
Management of data processors
It is possible to associate one or more Data Processors to each process/processing Entity, in order to obtain a precise mapping of all the data processors and their acts of appointment.
DPIA
For each Process/Processing, the criteria identified by art. 20 of the guidelines 248 issued by the European Data Protection Board will be used, which, combined with the results obtained through the Risk Assessment (to assess the impact on the rights and freedoms of the interested parties) and Risk Management (to document the state of implementation of security measures suitable for containing such risks) modules, will make it possible to generate the document in word format that reflects the methodology adopted by the CNIL (French Data Protection Authority).
The register of Data Breach, Ads, interested Party Instances
Risk In Deep also offers the possibility of keeping track of all the other obligations concerning:
