“Organisations that are well prepared for GDPR have a distinct competitive advantage over those that are not. If clients ask us about GDPR, we want to be able to show that we understand the issues involved and that we’re taking all reasonable steps to comply. GDPR introduces a new principle of accountability – it’s not enough to just comply with the regulations, you have to be able to demonstrate compliance and prove the governance measures you’ve put in place. The CCH GDPR Compliance software makes this much easier to do, which is just one of the ways in which it helps us."
Andrew Guy, IT Director, French Duncan
Data Protection Officer
Review Data Protection Officer (DPO) requirements. Get started with a questionnaire to determine whether or not you need a DPO. CCH GDPR Compliance helps you understand whether or not your organisation needs a DPO, the role and responsibilities and provides vital background information and checklists.
CCH GDPR Compliance has a series of compliance checklists for IT security, HR and marketing which help you comply with the requirements for the proper handling of Personal Information, from its collection through to its demise. With CCH GDPR Compliance you can easily assess your data protection risks and compliance status relating to consent, digital marketing and profiling, HR practices and IT security.
Create a personal data inventory to understand whose personal data your organisation holds, why you hold it, under which lawful basis and for how long, what data you process, where it is kept and who you share it with.
Map how an individual’s personal data is processed by your organisation. Based on your responses, CCH GDPR Compliance customises your governance documentation and data protection tools.
The GDPR states that most companies must keep a report of their organisation activities which relate to personal data and compels you to communicate certain details around the ways in which you collect and use personal data. CCH GDPR Compliance generates the necessary templates and the code which you can embed in your company websites as well as privacy notices and records of processing activities. You will also be able to define your data protection policies and implement an online subject access request form.