Demands are increasing. Is your organization ready?
GDPR
The General Data Protection Regulation (GDPR), whose entry into force occurred in May 2018, is applicable to all organizations operating in the European Union.
What is the current context?
The main objective of the General Data Protection Regulation (GDPR) is to ensure respect for each individual’s fundamental right to act on his or her data.
This regulation implies significant changes in the approach to the management of personal data, and has significant penalties associated with events of non-compliance.
The role of the regulators (in Portugal, CNPD – Portuguese Data Protection Authority) changes substantially with the entry into force of this regulation, with them now focusing their efforts on supervisory actions, as opposed to activities of notification and prior approval, as has been the case until now.
Based on the timetable defined by the European Commission, companies should, ensure the necessary changes in their operations (legal, procedural and technological) to comply with the standards present in the GDPR.
PwC seeks to provide its customers with an integrated offer, which includes the regulatory and operating facet, to enable them to adapt their organizations to the GDPR.
Based on PwC's GDPR implementation framework, we enable a rapid diagnosis of 18 analysis points, quantifying the risk of non-compliance and potential fines. Subsequently, a high-level action plan is developed to manage the potential risks identified.
End-to-end analysis, supported by a global PwC framework, which begins with a comprehensive legal, procedural, and technological diagnosis and aims to design and implement a model to meet GDPR requirements.
Conducting a pilot project, using the defined and implemented model, which may include simulating the occurrence of real events provided for in the GDPR, thus identifying potential constraints and opportunities for improvement.
Specific training aimed at the organization's key stakeholders with the aim of raising their awareness of the implications of the GDPR.
Operational support for DPO activities, focusing on managing privacy implementation programs, executing PIAs, analyzing GDPR support processes, and other activities tailored to your organization's needs.
Contact us
