Demonstrate the compliance of VSEs & SMEs
Our super efficient tool guides you to GDPR compliance and allows you to demonstrate it
Why take action with GDPR Folder ?
You want to take action but haven't had the time...
You are self-employed, a company manager or in charge of your structure, whether it is private, associative or public...
It's time to address your compliance issue
The time to delay is now, the transition period following the launch of the GDPR in 2018 is over.
It is a key subject for your activity that you want to master
You prefer to take the matter in hand yourself rather than delegate it to lawyers or service providers.
Whether you have already made progress or are starting from scratch, GDPR Folder will help you get to the end
You may have already started and completed a number of RGPD steps (e.g. cookies on your website or drafted
Principles of operation of GDPR Folder
GDPR Folder is an online tool to assist you in your compliance
GDPR Folder is an online tool containing a questionnaire to assess your level of compliance and many templates and tips to help you achieve your GDPR compliance. No software is installed on your computer and our tool does not connect to any of your systems.
You create your own compliance file
By subscribing, you create an online RGPD file specific to your company. Once connected on your space, you will have to answer questions in several headings. The headings cover all the provisions of the RGPD. Some of them are not applicable to all the structures as, for example, the subcontracting part.
EXAMPLE OF HEADINGS
Clear, simple questions that do not require technical or legal expertise
The answers will allow us to evaluate your level of compliance based on your declarations. When you exit, you will know exactly what is already compliant and what requires action on your part. The questions are dynamic to save you time. For example, if you declare that you do not have any employees, you will not have to fill in the entire section dedicated to
EXAMPLE OF QUESTIONS IN THE HR SECTION
Beyond the self-assessment, GDPR Folder goes straight to the point to help you complete your file
In some cases, the answer to a question will require you to perform a compliance action to validate the point. In each case, everything is provided, either you will have a very clear procedure to follow, or we will provide you with a legally validated model that you can use as is, making sure to customize it of course. Once you have done this, all you have to do is indicate online that you have taken the necessary steps to turn this point green.
EXAMPLE FOR THE COMPUTER CHARTER PART
Then, once you have finalized your charter, you just have to add it to your file
Your online file allows you to generate a complete PDF compliance file
All companies subject to the RGPD must be able to justify their compliance efforts. For this reason, we allow you to download a PDF file to meet this obligation. It materializes all the steps you have taken in relation to the RGPD. It may be required in case of control by an authority such as the CNIL but you can also share it if necessary to third parties who would request it.
All the answers and elements that you will add to your online file will enrich your GDPR compliance file. Each time you progress, you can update and generate a new PDF file that you can save at home directly.
Full functionality for 100% compliance
GDPR Folder has been designed so that "non-experts" can easily carry out all the compliance procedures without legal or technical assistance. We cover 90% of the cases that may arise.
This does not prevent you from having another external opinion in order to validate certain process choices or to call upon your technical service provider to set up certain elements on the site.
FEATURES OF THE TOOL
GDPR TOPICS COVERED
| Adding contributors | Possibility of working with others or with other departments |
| Self-evaluation | Simple thematic questionnaire with contextual help |
| Compliance score | Evolves based on responses and clearly identifies issues or missing documents |
| Backup and update | Answers saved at each step allowing you to complete the file at your own pace |
| History and export | Each time you save, your compliance file can be generated and saved as a PDF. It includes all your provisions |
| Compliance badge | The badge ranging from 3 to 5* can be displayed on your site to demonstrate your compliance effort to your visitors, prospects, customers, partners... |
| Multi-file management | Ability to manage / supervise multiple files for multiple institutions |
| Organizational security | Physical security of premises and data |
| Technical security | Electronic data security, servers... |
| HR (Human Resources) | Information, training of employees and legal provisions |
| Website | Cookies, consent, personal data policy... |
| Databases | Consent management and reasons for processing |
| Law of persons | Provision for access rights, modification... |
| Subcontractors | Identification and management of subcontractors |
| Outsourced processing | Obligations when you are a subcontractor for a third party |
| Register of treatments | Standardized or customized sheets for all listed data processing |
| Data Protection Impact Assessment (DPIA) | Questions about the need for an AIPD (also known as a PIA) |
| DPO/DPD | Questions and documentation regarding the possible appointment of a Data Protection Officer |
ALL ASPECTS OF THE RGPD ARE COVERED
Very often, companies or service providers limit themselves to looking at some of the subjects (cookies, website...) forgetting, for example, the subcontracting or HR aspects. Our approach allows you to cover ALL aspects, including the most specialized ones such as PAI (impact analysis projects) when you process particularly sensitive data.
In the same way, we offer you standard treatment sheets to save you time, but you also have the possibility to create and add your own treatment sheets that perfectly fit your activity.
It is very simple, GDPR Folder adapts to the vast majority of situations encountered among small and medium-sized structures, whether they are private, associative or public.
Security measures
Is your computer security sufficient? How to secure your paper files?
Website
What are the obligations regarding cookies, privacy policy, etc.?
Human resources
How should your staff be trained? What clauses should be added to your employees' contracts?
Databases
How do you obtain consent from the people listed in your databases?
Data theft and loss
What procedure to follow if your company has personal data stolen or lost?
Subcontractors
How do you ensure that your subcontractors are compliant with the GDPR?
Subcontracting
How do you demonstrate that you are handling the data you receive correctly?
Impact analysis
What measures should you take for the sensitive data you may have?
Treatment record
How do you document how you handle personal data?
YOU TOO, SAY IT'S SETTLED AND LET IT BE KNOWN
Display your badge on your site and your media. It evolves from 3 to 5 stars with your level of compliance
Compliance to inspire confidence and show it
Site design and referencing by
