Assess, determine, and mitigate your data processor’s privacy risks systematically and efficiently.
A multitude of business partners have access to your company’s personal data. Are you sure they comply with the GDPR Privacy requirements? As data controller, it is your obligation to find out and make sure they do. The GAN platform makes sure you have the right process in place to manage processors’ privacy risk rating and disclosures: risk rate your processors, collect privacy disclosure forms and build automatic documentation of your processor data privacy risk management with our web based solution.
Assess dozens of processors without losing control and apply consistent workflows across the organization regardless of who initiates the assessment.
Drop the Excel spreadsheets and manage documentation with ease by launching and storing all data privacy questionnaires in web format.
Maintain overview over the progress of assessment and approval of all processors and implement automatic escalation routes when processors show red flags.
A single auditable log is created and the full documentation of the processor’s assessment and responses is stored automatically.
Conduct a data protection impact assessment through simple questionnaires and make a fast determination of the privacy risk level of the processor. Once submitted, the tool will launch a disclosure form or trigger escalation automatically, based on the scoring of the impact assessment.
No more excel or MS Word based disclosure forms, email attachments and inconsistent documentation. Build disclosure forms in a very intuitive interface and let the platform deliver them in a web format directly into your data processor’s inbox. Create your own disclosure form or use our standard best practice ones. The platform can even deliver different disclosure forms depending on the type of data processor.
Scope data protection assessments by producing risk-based workflows: let the platform trigger automatically in-depth disclosure forms for processors with access to sensitive data, while applying a more lenient approach to lower risk processors.
Build approval workflows and escalation procedures that match the privacy risk assessments: Assign permission rights to the proper employees and ensure that only high risk cases are channelled to data security compliance officers.
Tens, hundreds or thousands of processors: the platform’s filtering and reporting capabilities allow you to keep control over all approval flows. Zoom in on the progress of a single evaluation or get an overview of third parties with access to your company’s sensitive data, of regional high-risk processors, and much more.
The implementation of post approval mitigation actions and monitorships is crucial when a high-risk processor is approved. Where privacy assessments show a need for ongoing mitigation efforts, you can create mitigation actions in a to-do list format allowing you to keep track of the open items. You can even assign these items to your colleagues and monitor the completion.
We think about service a bit differently than most. To us, we’re your colleagues in another office. Same team, same goals. Expect to hear from us, see us, and feel us working for you. Request a Demo