WHAT IS THE PROCESSOR ASSESSMENT?
The Processor Assessment allows you to easily identify which of your third-parties are considered "processors" under the GDPR, thus requiring routinely scheduled diligence. The process is streamlined, centralized, and repeatable to enable efficiency and defensibility.
WHY DO I NEED IT?
The GDPR requires companies to conduct periodic, logically scheduled third-party diligence on any third-parties with access to personal data. In order to identify all third-parties with access to personal data, a basic assessment of all vendors (including presumed low-risk vendors) is necessary. After identifying which third-parties have access to personal data, a more thorough assessment is necessary.
Controllers are liable for the actions of the processors they select and responsible for compliance with the GDPR’s personal data processing principles.
Article 28 details specific requirements of third-party processors including:
HOW DOES IT WORK?
We offer the only solution that quickly identifies which vendors require comprehensive assessment according to the GDPR.
The Processor Assessment is built upon globally recognized frameworks and regulatory guidelines and delivered through our unique service delivery model. This powerful solution eliminates manual, resource-intensive processes, enabling you to broaden the scope of your third-party risk management program while documenting and automating the entire process.
We provide the best practice standards and streamlined processes necessary to assess all vendors and surface hidden risks.
This service enables legal and compliance officers to comply with regulatory guidelines, while supporting IT efforts. The Processor Assessment is the most essential due diligence solution available. Learn more about why we're better.