Professional Documents
Culture Documents
The project will focus on achieving compliance with the EU General Data Protection
Regulation (GDPR) for Convatis with operations in the European Union.
Scope of Work:
1. Conduct a Data Protection Impact Assessment (DPIA) for all business processes
involving personal data.
2. Review and update the company's Data Privacy Policy and procedures to ensure
compliance with GDPR.
3. Conduct a gap analysis of the company's current data privacy program against GDPR
requirements.
4. Develop a roadmap for achieving GDPR compliance, including a timeline and
resource requirements.
5. Provide training and awareness sessions to all employees on GDPR and data privacy
best practices.
6. Conduct a review of the company's third-party service providers to ensure GDPR
compliance.
Note: The cost may vary depending on the size and complexity of the organization and its
data inventory as well as any other specific requirements of the project.