Data Protection Services
Supporting your regulatory compliance needs
Data protection has become one of the most important issues today for companies operating in a cyber-connected, global business environment.
Our analysis of cybersecurity and data protection regulations ensures that your business is provided with the highest level of expertise regarding regulatory requirements in the areas in which you operate, including best practices and guidelines to aid in your business posture, operations and compliance strategy.
GDPR
In effect as of May 25, 2018, the European Union’s “General Data Protection Regulation” (or GDPR) is currently a key regulatory development for organizations with global operations. Organizations that process the personal data of people residing in the EU must now comply with GDPR requirements, or risk being heavily fined.
Our GDPR services include:
-
GDPR gap analysis: Understanding the role the company plays as Processor or Controller, in relation to information about customers, employees and suppliers.
-
Mapping of gaps, in accordance with GDPR requirements.
-
Mapping of data processing activities.
-
Updating and writing of corporate governance documents, procedures and guidelines.
-
Website scanning for compliance gaps with GDPR cookies and consent requirements.
-
"DPOaas" - DPO as a service.
Watch our great GDPR clip (in Hebrew) here: https://www.youtube.com/watch?v=IYZ42tYKlao
Israeli Privacy Protection (Data Security) Regulations
The Israel Regulations for Data Security, or IRDS, establish data security regulations regarding the processing of Israeli citizens’ personal data as part of their business activities, ensuring that data security becomes an integral part of organizational governance and management routines.
Our IRDS services include:
-
Identifying databases and their required security level.
-
Defining the required "database definition document".
-
Writing and updating the company’s information security procedures.
-
Performing a gap analysis in relation to the IRDS and the required information security procedures.
-
Mapping organizational computer systems and databases.
For a comparison of the GDPR and IRDS regulations, please see our publication.
CCPA California Consumer Privacy Act
The California Consumer Privacy Act (CCPA) took effect on January 1st, 2020. Upon its implementation, the CCPA will compel companies around the world that conduct business in the State of California to implement structural changes to their privacy and data protection programs, placing data privacy rights of California residents front and center. Several other US states have initiated legislative reform similar to California's. Non-compliance with the CCPA (and future similar laws) will incur penalties for organizations.