RODO/GDPR and information security
RODO/GDPR – General Data Protection Regulation
The requirements of the RODO/GDPR with regard to the protection of personal information of natural persons apply to the questions of compliance with the law, reliability and transparency, purpose limitation, minimisation and accuracy, storage and retention, accountability, data integrity and confidentiality. In the implementation process of the RODO/GDPR we use the most accurate and reliable management practices available.
Our consultants, using the SenseMaking Consulting Group methodology for the implementation of personal information protection systems in public sector organizations, will help you carry out an effective risk analysis and implement the best security practices compliant with the RODO regulations.
ISO 27001 and ISO 27002 – information security
To assure an effective implementation of the information security management standards, a business organization must meet statutory requirements for data protection and legal compliance, take into account the specificity of the business environment, and use relevant IT tools and solutions.
We will help you effectively implement an information security management system, relying on our original SenseMaking Practices© methodology and using reference models specific to business organizations. We will conduct risks analyses and suggest optimal information security solutions compliant with existing legal requirements, and guaranteed to effectively protect your processed information. Following the successful implementation, we will assist your organization towards obtaining the ISO 27001 Certificate.