We currently (May 2019) provide 17 templated GDPR-compliant policies as part of our IASME Governance with GDPR readiness certification (we do not provide any of the following policies for Cyber Essentials certification).
For internal use, we provide:
- Administrator Access Tracker
- Asset Register Template
- Business Continuity Plan
- Data Classification Policy
- Data Mapping Tool
- Data Protection Policy
- Information Security Policy
- Privacy Policy Template
- Reporting to ICO form
- Rick Assessment & Risk Treatment Plan
- Security Awareness & Training Guidelines
- Security Incident Form Instructions
- Subject Access Request Form
- GDPR Checklist for Third Party Agreements
For third party vendor assessment, we provide:
- GDPR Checklist for Third Party Agreements
- GDPR Vendor Annex Short Template
For your customers, we provide:
- Data Processing Addendum
For external use, we provide:
- Legitimate Interest Assessment
- An example of a completed Legitimate Interest Assessment document
- GDPR Privacy Policy Toolkit