Compliance

GDPR

The new privacy and data protection rules, General Data Protection Regulation (GDPR), go into effect on May 25, 2018 and will impact any organization who does business in the European Union. 

ARE YOU GDPR COMPLIANT?

WHAT IS GDPR?

 

GDPR is the new European Union’s (EU) General Data Protection Regulation law.  Companies that collect data on citizens in EU countries will need to comply with the strict new rules that protect consumer data by May 25, 2018. 

WHO DOES THIS AFFECT?

  

Even if your company or organization in not located in the EU, if your company processes personal data or sells goods or services to citizens in EU countries, then you will need to comply with GDPR.  


The GDPR penalties for non-compliance are steep –  possible audits and fines of up to €20 million (about $24 million USD) or 4 percent of your company's annual global revenue, whichever is greater.

HOW TO BE COMPLIANT?

  

To be in GDPR compliance, all organizations should implement a GDPR Compliance Program. 


GDPR implementations should focus on having in place the right data governance structures, policies and operational practices, and monitoring, detection and response processes.

CLARUS AND PARTNERS ADVISE ON GDPR COMPLIANCE

 

Clarus has partnered with teams of IT and Compliance experts to analyze and advise on GDPR, KYC, Cybersecurity and business regulatory Compliance. 


Clarus Partners are located in the U.S. and Europe.

START YOUR GDPR COMPLIANCE PROGRAM

Clarus and Partners offers GDPR Compliance Programs

Clarus and their Partners offers GDPR Compliance comprehensive solutions to help your organization assess your current data compliance exposure, build a plan, implement the policies and processes, and maintain and control ongoing GDPR compliance.

  

GDPR implementations should focus on having in place the right data governance structures, policies and operational practices, and monitoring, detection and response processes.


AIM Process – Assess, Implement, and Maintain


  • Assess Your Data
  • Implement the GDPR Compliance Program
  • Maintain the Data Protection Program


Clarus and Partners will work with your organization to comply with the GDPR requirements: 

  • Assessment: Complete your GDPR definition and assessment
  • Privacy Policies & Procedures: Implement comprehensive policies, notices and procedures
  • Data Mapping: Plan for and complete your data mapping
  • Data Protection Team: Ensure the team is in place - Data Controller, Data Processor, Data Protection Officer (DPO), Legal, IT and Security 
  • Organizational Strategy & Change Management: Create oganizational GDPR strategy & change management plans
  • Privacy Training: Create the training plan & provide training 
  • Privacy Impact Assessment Process:  Create Privacy Impact Assessment processes and documentation
  • Risk Management: Create the risk management plan
  • Incident Response/Data Breach Procedures:  Create effective incident response and data breach protocols to ensure they are compliant with GDPR’s strict notification requirements
  • Third-Party Contract Checklists:  Ensure that third-party vendors and contracts include the contractual terms and obligations required by GDPR

Contact Us FOR MORE INFORMATION ON GDPR

Email us at info@clarusrealestate.com or call us at +1.646.926.3850 (U.S.) or +33.663.568.960 (Europe)