Blog
RGPD compliance

Contract review to simplify your GDPR compliance

Par
Alessandro Fiorentino
Partagez cet article
adequacy 4.5 facilitates GDPR compliance with a new contract review module

Since February 6, Adequacy has been updated to version 4.5 and confirms its leading position in terms of personal data management solutions with, in particular, the implementation of the review of contracts.

New modules relevant to GDPR compliance.

For this new version upgrade, we used the same method. Namely, ask yourself the following questions continuously:

  • How to simplify the life of the DPO in his missions?
  • How to help legal and IS departments in their role as guarantors of security measures?
  • How to facilitate the mobilization of the professions that will be solicited?

Adequacy is now considered to be one of the most complete solutions on the market. Every week, more and more of you join the ranks of our customers.

Although we are happy that the work done is recognized in this way, our satisfaction lies more in the fact that each module is actually used by all the stakeholders at our customers.

It is this multi-party use that proves the relevance of the modules imagined and developed by our teams. It is this use that proves to us that we are going in the right direction and allows us to always be one step ahead of our competitors.

Is contract review the bread and butter of legal departments for GDPR compliance?

Joining a legal department and hoping not to have a contract review to carry out is like being a controller at the CNIL and hoping not to have to issue a formal notice; a sweet utopia.

However, should we highlight the difference between reviewing contracts in the normal rhythm of business life and reviewing contracts under the GDPR?

In the case of a review of contracts under the GDPR, the workload can be overwhelming and requires the management of priorities between contracts.

On this subject, experience shows that the priorities initially set are changing. They are even often questioned. Either according to the business challenges, or according to the interlocutors. It is these changes, which are both frequent and unexpected, that can compromise the smooth running of contract reviews.

While this stage of contract review is particularly important for organizations to comply with the GDPR. It is clear that relatively little has been developed on the subject.

We ourselves, before Adequacy 4.5, only offered our sympathy to these lawyers who sometimes lost their minds going back to the same contract for the nth time, annotating the same remarks again and looking for the latest exchanges with their interlocutors.

Since February 6, we have been offering something more tangible: The contract review module.

With this new module, legal managers can now benefit from an inventory of their contracts, obtain visibility on the current compliance of contracts in terms of personal data protection and monitor the progress of their upgrade.

A continuous analysis of uses

Upgrading is not just about adding new modules. We take advantage of the feedback from our customers and partners to adjust the existing modules:

Register module and filter operational structure

We added the possibility of filtering treatments by operational structure or by domain.

Even after applying Patrick Tiev's advice, it is possible for a legal entity to end up with a large number of processing sheets. To make it easier for users to navigate, we have therefore integrated a new filter.

The DPO can now choose the processing sheets that will appear for each user according to their Business Unit or profession.

Control module

Provision of new Excel reports to facilitate compliance monitoring:

- List of policies by treatment/AIPD

- List of measures by policy

- List of measures whose scope of implementation in a treatment/AIPD is partial

- Contract review

- Repository of suppliers/subcontractors

Data breach form

We added an option that allows additional fields to appear in the violation entry form. These fields make it possible to fill in an assessment of the impact of the incident on the organization (based on several impact scales: financial, legal, environmental, social, image/reputation; and the evaluation of the associated financial amounts).

This is a feature adapted for organizations with advanced maturity in the assessment and monitoring of incidents. Indeed, the collection of information on the impacts on the organization thus allows CISOs and the DPO to justify the usefulness of their actions and the budgets to be allocated to them.

And to end this email, we would like to thank Le Figaro and its DPO, Ms. Bénédicte Wautelet, for the trust they gave us 2 years ago and the testimony given to CIO Online

The latest news

News

Adequacy obtains the EcoVadis gold medal: a recognition of our CSR commitment

Alessandro Fiorentino
News

Adequacy ranked best GDPR compliance software by Déciders Magazine

Alessandro Fiorentino
Extraterritorial Laws and Related Laws

Data Privacy Framework: 3 factors of an inevitable shock

Alessandro Fiorentino

They have trusted us for years

Used by over 10,000 legal entities

Discover Adequacy

One of our experts introduces Adequacy to you in a real situation.
Let's discover together how Adequacy adapts to your reality on the ground.
Request a quote