Does your organization have sufficient technical measures and processes in place to secure personal and sensitive data?

GDPR Assessment

Are your data collection, data processing, and supporting technologies built to include privacy and protection principles?

GDPR Assessment

How much of your personal and sensitive data is currently encrypted both at rest and in transit?

GDPR Assessment

I would describe my organization’s process for classifying and labeling end user sensitive data as:

GDPR Assessment

Which of the following protection policies do you use to classify and label sensitive data?

GDPR Assessment

How much control do you have over access to personal and sensitive data (e.g., physical, remote, etc.)?

GDPR Assessment

For which types of data can you apply your control policies?

GDPR Assessment

If a data breach occurred, how would your organization be able to respond?

GDPR Assessment

How often does your organization test the effectiveness of technical measures and processes for ensuring security of data processing?

GDPR Assessment

How much of your data currently resides in the cloud?

GDPR Assessment