The new General Data Protection Regulation (GDPR) requires companies doing business with EU customers or storing data about EU customers to establish processes for the proper handling of secure personal data. The regulation covers all internal processes, external parties, systems, and assets. This level of complexity and scale can only be properly handled through automation.

CENTRL's GDPR software offers a comprehensive, intuitive and scalable platform to identify, measure, and mitigate the risks of how secure personal data is handled across the enterprise.

Digitization of the End-to-End-Diligence-Process

Data Mapping & Data Inventory

  • Create maps of all organizations and processing activities.
  • Create questionnaires for data discovery and publish to internal and external parties.
  • Map data subjects, data elements, transfers, and systems by processing activity.
  • View reports by data subjects and other attributes including cross-border transfers.
Provide Partners with a Robust Application to Respond

Readiness Assessments

  • Conduct assessments to determine handling of personal data.
  • Evaluate responses, segment processes, and entities into tiers, based on initial risk.
  • Select high risk processes and entities for DPIA.
Evaluate and Grade Partner Responses

Data Protection Impact Assessments

  • Design DPIA questionnaires and assign to controllers and processors.
  • Conduct audits, send surveys, and assessments to conduct full DPIA.
  • Grade and score responses at the control/sub-control or question level.
  • Track progress of each assessment and monitor risk in different risk categories.
Internal Control

Vendor Risk Management

  • Assess and monitor third-party data processors with respect to GDPR requirements.
  • Conduct inherent risk analysis and use the risk levels to tier vendors.
  • Automatically trigger the assessments to monitor controls.
  • Aggregate data and risk for all third-party engagements.
Manage Issues and Track Remediations

Risk and Issue Mitigation

  • Identify and raise visibility of issues from each assessment.
  • Collaborate with internal groups and third parties; request updates on issue remediation.
  • Capture important details about specific issue severity, resolutions recommendations, and issue status.
  • Create action plans and manage progress from start to completion.
Deep Analytics of Questionnaires

Reporting and Analytics

  • Comprehensive data mapping reports by data subject, processing activity, and other attributes.
  • Track status of DPIAs and progress for each processing activity with the ability to drill capabilities.
  • Deep search to quickly and easily find relevant items.
  • Leverage portfolio level dashboard and reports to highlight risks and exceptions.

GDPR Compliance Solutions