GDPR All-in-One Global Compliance Toolkit

GDPR All-in-One Global Compliance Toolkit: FLANK offers the most in-depth set of GDPR documents available anywhere in the world. As a controller or processor, you need documentation, and quite a bit of it when it comes to GDPR compliance. You need documents for information security, H.R. privacy, operations, and much more. FLANK has them! The Most Complete and Comprehensive set of GDPR Compliance Documents found anywhere in the World.

  • Hundreds of pages of professionally developed policies, forms, checklists, and more.
  • Developed by industry-leading InfoSec, cybersecurity, privacy, and regulatory compliance professionals.
  • Essential for saving hundreds of hours and thousands of dollars.
  • Available for instant download today!

Our GDPR All-in-One Global Compliance Toolkit includes the following essential compliance documents:

  1. GDPR Compliance Requirements and Overview Matrix: Comprehensive document providing easy-to-understand information pertaining to all Articles within the GDPR. The matrix also references critical policies, procedures, and other related documentation necessary for GDPR compliance. 
  2. GDPR Mapping to ISO 27001/27002 Matrix: A critical mapping tool providing much-needed clarity and understanding between the GDPR Articles and the ISO 27001/27002 framework publications. Because the mapping from GDPR to ISO 27001/27002 can be challenging, this document is therefore essential for controllers and processors who rely on ISO 27000 controls. 
  3. GDPR Compliance Checklist: An essential 40-page MS Word checklist covering all Articles within the GDPR. Easy-to-use and implement for ensuring full-coverage of all GDPR subject matter for controllers and processors. Performing your own GDPR readiness is now easier than ever – and cost-effective. 
  4. ISO 27001/27002: 2013 All-in-One Toolkit: World-class set of ISO 27001/27002 policies and procedures templates that are often essential for GDPR compliance for controllers and processors who seek to implement an ISO 27000 ISMS. In all, you’ll receive approximately 600 pages of documents. FLANK’s ISO 27001/27002: 2013 All-in-One Toolkit documents are incredibly well-written and easy-to-use.
  5. Information Security & Cybersecurity Policy and Procedures Manual: Essential InfoSec policies, procedures, and related documents contained in a 250 + page MS Word manual necessary for complying with Article 32 measures of the GDPR, and other related Articles. 
  6. Incident Response and Breach Reporting Program – GDPR: Having an incident response and breach reporting program is mandatory documentation necessary for complying with Article 33 and Article 34 of the GDPR. The comprehensive 23 + page MS Word program has you covered with all essential policies, procedures, processes, forms, and more. 
  7. Breach Notice Letter (Enhanced for GDPR): In today’s complex cyberworld, breaches do happen, even to companies that take security seriously. When they unfortunately do occur, you need to be proactive in many ways, especially when it comes to notifying data subjects. FLANK’s breach notice letter is a great template to use if such an event unfolds, and it’s also a strict requirement for the General Data Protection Regulation (GDPR).
  8. Third-Party Due-Diligence & Vendor Management Program – GDPR: Many aspects of the GDPR allow outsourcing to third-party entities, and as such, proper due-diligence must be undertaken for ensuring such entities are in fact GDPR compliant. Knowing what controls are in place from an organizational, InfoSec, and privacy perspective are critical – and that’s why you need FLANK’s Third-Party Due-Diligence & Vendor Management Program – GDPR.
  9. Data Privacy Notices for Websites (enhanced for GDPR): Website privacy notices will require a complete overhaul, thanks to the privacy requirements put forth by the GDPR. FLANK’s customized data privacy notice is an excellent document for replacing your existing online privacy policies.
  10. Data Processing Policy and Procedures - GDPR: Controllers and processors need to formally document all aspects of their data processing, such as the types of data, purpose of processing, safety measures in place, and much more. FLANK’s MS Word template for data processing is an essential ingredient for your GDPR compliance efforts.
  11. Data Processing for Special Categories Policy and Procedures - GDPR: Controllers and processors “processing” special categories of data need to fully document the types of personal data they are processing, what exemptions allowed them to process the data, and more. FLANK’s MS Word template for data processing of special categories of data is therefore a vital document for one’s GDPR compliance reporting.
  12. GDPR Data Protection Impact Assessment (DPIA) Template Program: Do you need to perform a DPIA? If so, then we offer the world’s most comprehensive and easy-to-use DPIA template. Developed by InfoSec and privacy experts, the 30-page MS Word document is essential for documenting specific requirements as put forth in Article 35 of the GDPR.
  13. Data Protection Officer (DPO) Policy and Procedures - GDPR: It’s not enough to say your organization has a Data Protection Officer (DPO), you need to document that individual’s roles and responsibilities, along with other essential information. FLANK’s DPO policy and procedures template is ready-to-use and customize as necessary.
  14. Data Protection Policy and Procedures – GDPR:  The ability to access, utilize, modify, store, transport, and sanitize data (and the media for which it resides on) must be thoroughly documented for purposes of the GDPR.  FLANK’s Data Protection policy and procedures includes coverage of all essential activities relating to data protection. 
  15. Data Quality Policy and Procedures - GDPR: A key component of processing personal data safely, securely – and in a valid, accurate, and complete manner – is being aware of core data quality concepts. FLANK’s Data Quality policy template covers all essential data quality best practices that your organization needs to have in place for GDPR compliance.
  16. GDPR Consent Checklist: The topic of “consent” is one of the most fundamentally important provisions of the GDPR, so use FLANK’s consent checklist for ensuring you’re covered when it comes to the GDPR.
  17. Personal Data Inventory Matrix for Data Subjects - GDPR: You can’t protect what you don’t know you have, therefore, it’s important to thoroughly document all types of personal data that you store, process, and/or transmit for data subjects. Use FLANK’s matrix for ensuring you’ve identified and documented all your information systems and related assets.
  18. Records of Processing Activities Matrix for Data Subjects - GDPR: An essential element of GDPR compliance is documenting all records relating to the processing activities of personal data for EU data subjects. This requires a comprehensive, easy-to-use template, such as FLANK’s Records of Processing Activities Matrix for Data Subjects via MS Word. 
  19. Right of Access Policy and Procedures - GDPR: Data subjects have many rights within the GDPR, particularly the right to access regarding data being processed. Controllers therefore have to provide data subjects with a wealth of information regarding data processing activities. Such measures need to be documented formally with a Right of Access policy and procedures template. 
  20. Right to Data Portability Policy and Procedures - GDPR: It’s essential to document organizational data portability measures in regards to data subjects and how they request right to data portability, along with what initiatives internal personnel undertake for executing data portability requests. 
  21. Right to Erasure Policy and Procedures - GDPR: Documenting the specific measures relating to a data subject’s right to erasure is critical for GDPR compliance. Specifically, how do data subjects undertake right to erasure measures, and how do controllers and processors support such measures? FLANK’s Right to Erasure policy is therefore a must-have policy template. 
  22. Right to Object Policy and Procedures - GDPR: Data subjects can object to having their personal data processed. As such, organizations need to document the measures that data subjects can take to object, and the related processes and procedures performed by controllers and processors for facilitating such requests.
  23. Right to Rectification Policy and Procedures - GDPR: For any personal data deemed inaccurate, data subjects have the right to have the actual data rectified. This means that controllers and processors need to have documented policies and procedures detailing how data subjects request rectification to their personal data, and what measures organizations take for facilitating such requests. 
  24. Right to Restriction Policy and Procedures - GDPR: Data subjects have the right to restrict processing of their personal data, if specific conditions apply. This means that controllers and processors need to have documented policies and procedures detailing how data subjects request restriction of processing for their personal data, and what measures organizations take for facilitating such requests.

Related Items