GDPR compliance

Service overview

The General Data Protection Regulation (GDPR) comes into force on May 25, 2018. Organisations in non-compliance will face heavy fines.

The GDPR extends the data rights of individuals, and requires organisations to develop clear policies and procedures to protect personal data, and adopt appropriate technical and organisational measures.

Helping you comply with GDPR

Assess

To what extent does GDPR apply to your organisation

Customer databases, feedback forms, email content, photos, CCTV footage, loyalty program records, HR databases. You will need to understand what types of personal data your organisation processes, how, and for what purposes. The first step is to inventory your data and identify the systems where it is collected and stored.

The Microsoft Azure Data Catalog is a fully managed cloud service that serves as a system of registration and a system of discovery for your organisation’s data sources. Also, it will help you discover, understand and use data sources to get more value from your existing data.

Implement

Develop and implement a data governance plan

A data governance plan helps you define policies, roles, and responsibilities for the access, management, and use of personal data, and ensures your data handling practices comply with the GDPR.

Using the Microsoft Privacy-by-Design and Privacy-by-Default methodology, we will help you implement strong measures to protect your customer data from inappropriate access or use by unauthorised persons. We provide you with the necessary control to ensure you know how data is managed and who has access to what data within your organisation.

Protect

Establish security controls and responses

Data security risks range from physical intrusion or rogue employees to accidental loss or hackers. The GDPR requires, in the case of certain data breaches, that organisations notify regulators immediately; as well as, possibly, needing to notify the affected data subjects.

The Microsoft Azure Security Center employs advanced security analytics, integrated threat intelligence, behavioural analytics and anomaly detection. We can also help you ensure compliance by building risk management plans and taking risk mitigation steps, such as password protection, audit logs and encryption.

Report

Meet documentation requirements

Organisations processing personal data will need to keep records about the purposes of processing; the categories processed; with whom the data is shared; the legal basis of any data transfers to third countries; organisational and technical security measures; and data retention times applicable to various datasets.

Microsoft cloud services offer embedded auditing services that can help you meet your obligations, including logging of security-related events and related alerts.

What changes after GDPR?

Personal privacy

Individuals have the right to:

Access their personal data
Correct errors in their personal data
Erase their personal data
Object to processing of their personal data
Export their personal data

Controls and notifications

Organisations will need to:

Protect personal data using appropriate security
Notify authorities of personal data breaches
Obtain appropriate consents for processing data
Keep records detailing data processing

Transparent policies

Organisations are required to:

Provide clear notice of data collection
Outline processing purposes and use cases
Define data retention and deletion policies

IT and training

Organisations will need to:

Train privacy personnel and employees
Audit and update data policies
Employ a Data Protection Officer (if required)
Create and manage compliant vendor contracts

Methodology

Our methodology applies agile tools and Dynamics 365 Sure Step to manage product lifecycle, reduce risks, and improve efficiency in all D365 (AX) projects.

More about our metodology

"Based on our cooperation, we confirm the experience, professionalism and realibility of ANEGIS employees. We recommend this vendor as a reliable business partner."

Ewa Franczak

"ANEGIS provided excellent support for our Dynamics AX Parent Company finance installation. Their consultants are top quality, highly effective professionals."

Marie Capes

Director of Finance and Administration, WPP London

"ANEGIS’ commitment and reliable approach were a key factor in our decision to work with them, and they continue to deliver in an effective and timely mannner."

Neil Hammond

IT Director, BUUK Infrastructure

"Our go-live was successful! Thank you to all of you. Let me repeat that I am really thankful!"

Dr. Rick Dannert

Project Manager, New Yorker

Let's talk about your needs!

It will take a moment to fill out the 3-step form and we will contact you to discuss the details of your project.

step 1/3

Name*required

Surname*required

Job title*required

Company name*required

step 2/3

Email*required

Phone*required

VATID*required

Message

step 3/3

I hereby give my consent referred to in article 398, paragraphs 1 and 2 of the Act of 12 July 2024. - Law of electronic communication, for ANEGIS sp. z o.o. to send me commercial information (among others, offers promoting services and goods), including direct marketing - to the e-mail address and mobile phone number provided by me in the sent form. Within the framework of the granted consent, ANEGIS sp. z o.o. may use automatic calling systems or telecommunication terminal devices within the meaning of the aforementioned Act to send commercial information, including direct marketing.The administrator of your personal data is Anegis Sp. z o.o. with its registered office at Powstańców Śląskich 17 D, 53-332 Wrocław. Your data will be processed only for the purpose of handling your request and for as long as it is necessary to handle your request. You have the right to access, rectify, erase, restrict processing of your data, object to processing and to data portability. You may also lodge a complaint with a supervisory authority. The provision of data is optional but necessary for the handling of your request. Legal basis: article 6(b)(1) RODO - processing is necessary to take action at the request of the data subject before entering into a contract. If you have any questions, please contact us at: rodo@anegis.com.

Thank you for inquiry, we’ve passed it to our sales department, our representative will reach you back in his earliest convenience.

Oops! Something went wrong while submitting the form.

Porozmawiajmy o Państwa potrzebach!

Wypełnienie formularza zajmie chwilę, a my skontaktujemy się z Państwem, aby omówić szczegóły Państwa projektu.

krok 1/3

Imię*wymagane

Nazwisko*wymagane

Stanowisko*wymagane

Nazwa firmy*wymagana

krok 2/3

Email*wymagany

Telefon komórkowy*wymagany

NIP*wymagany

Wiadomość

krok 3/3

Wyrażam zgodę na przesyłanie mi przez ANEGIS odpowiednich zaproszeń, spersonalizowanych ofert, komunikatów prasowych i innych informacji.Administratorem Państwa danych osobowych jest Anegis Sp. z o.o. z siedzibą przy ul. Powstańców Śląskich 17 D, 53-332 Wrocław. Państwa dane będą przetwarzane jedynie w celu obsługi wysłanego zapytania i tak długo, jak to konieczne do obsługi zapytania. Mają Państwo prawo do dostępu do swoich danych, ich sprostowania, usunięcia, ograniczenia przetwarzania, wniesienia sprzeciwu wobec przetwarzania oraz przeniesienia danych. Mogą Państwo również wnieść skargę do organu nadzorczego. Podanie danych jest dobrowolne, ale niezbędne do obsługi zapytania. Podstawa prawna: art. 6 ust. b lit. 1 RODO - przetwarzanie jest niezbędne do podjęcia działań na żądanie osoby, której dane dotyczą, przed zawarciem umowy. W razie pytań prosimy o kontakt na: rodo@anegis.com.

Dziękujemy za zapytanie, przekazaliśmy je do naszego działu sprzedaży. Nasz przedstawiciel skontaktuje się z Państwem w najbliższym możliwym terminie.

Oops! Something went wrong while submitting the form.

Ups! Coś poszło nie tak podczas przesyłania formularza.

More services