Recommendation : 5. Control regulatory aspects
Is the risk analysis (RGPD) carried out ?
Conformity
B People
C Planet
A Prosperity
Difficulty
***
Priority
High
Récurrence
OnUpdate
Tests
Is the PIA validated by the DPO?
Precisions
The data that users entrust are under your responsibility and users must be kept informed of the care you take to ensure the confidentiality of this data. The processing register, the GDPR PIA must be carried out, updated and validated by the DPO (Data Protection Officer). Data exchanged with other service providers must be subject to a liability analysis. Limiting the collection of sensitive data, beyond respect for the user, also reduces the burden and responsibility of administering this personal data.
Use Case
GDPR compliance documents
Additional elements
Operational issues related to the project
Rule for assessing the level of compliance of the criterion
0 / 0
Life cycle
Administration
6 other criteria related to the recommendation: Control regulatory aspects
Conformity
Is the overview of data handling processes (GDPR) available ?
Conformity
Is the RGAA taken into account ?
Conformity
Is regulated data (banking, health, etc.) secure ?
Conformity
Is regulated data used ?
Conformity
Does the service being designed comply with changes in society and in legislation ?
Conformity
Can the infrastructure provider disclose its environmental metrics ?