On May 25, 2018 the EU’s General Data Protection Regulation (GDPR) comes into effect
It's leglislation that strictly governs how the data of anyone in the European Economic Area (EEA) is collected and managed by businesses, schools and institutions
If someone in the EEA comes into contact with your business - even if that's just giving an email - you must comply or face fines up to 4% of revenue
What are the rules? Where do I start? What tools does I need? What are the risks if I don't comply?
It's the simple framework, templates and documents you need to become GDPR-compliant, fast.
Designed for everyone from large ecommerce businesses to digital advertising agencies. It leverages StrategyBox's experience helping international conglomerates to small retailers become GDPR-compliant.
The Toolkit includes....
GDPR Compliance Audit - quickly assesses the weak points in your customer data collection, storage and useage
4 Step Framework + Templates - an easy-to-follow Project Plan, and sample documents you will need to attack those weaknesses so your business can become compliant
Hi, I’m Aaron Vidas, Founder of StrategyBox. Every day we handle the collection, storage and display of data of 100k’s of customers. We’ve had to develop practical ways to ensure our clients are GDPR-compliant. I want to share because I couldn't find a simple all-in-one tool that I could trust
You send an ad, email or collect data on current, or future customers while they are physically in the EEA
You sell online and use marketing and sales tools like Facebook Ads, Mailchimp, Hubspot, Marketo, Salesforce or Adroll
Run an app or website that stores location-based or purchase data of customers
Share, buy, or sell, data (even if it's anonomized)
If you answered 'Yes' to any of the above your company must be GDPR-compliant
The questions to ask to ensure your customer interactions, data ownership and systems are compliant
Assess the financial risk posed to your organizaton from fines and/or a data breach. Focusing Executive's attention on the GDPR compliance effort
Everything from suggested language on sign-up forms to intervals for data clean-up we've help implement with our customers
4 Step Project Plan
A simple template with our suggested 4 step framework for assessing
Data Mapping Template
An easy-to-use template that helps you map out how your customer data is collected, stored and shared so you can identify
The Nitty Gritty
Templates for International Transfer, Data Subject Requests and Controller-Processor Agreements
Data Breach Protocol
A template gathering the information you will need, and the authorities to contact, in the event of a breach
Terms & Conditions
Sample GDPR-compliant lanugage to amend the Terms & Conditions of your website, app and service contracts
Is the Toolkit Industry Specific?
We have worked with every one from international conglomerates, blockchain solution providers to small online retailers on GDPR compliance. The Toolkit is specifically designed for non-technical and technical teams to come together, assess their risk and weakpoints and create a plan to be GDPR compliant as fast as possible no matter the industry
What if I need more help?
Don't have the internal resources, or expertise, to complete a Compliance Audit and put a plan together? We can take care of that for you, contact us here to book a 15 min session so we can learn more about your business
How Long Does the Compliance process take to complete?
In our experience the GDPR Audit takes 2 working days (one to gather data and documentation, one to complete the checklist). Then 1 - 4 weeks to implement the compliance changes outlined in your Plan
My company isn't based in Europe, does GDPR affect me?
Yes! The GDPR apply to personal data collected of anyone physically in the European Economic Area. So if you're an American company targeting Chinese tourists while they're in Italy, you must be GDPR compliant.
Can I get a certificate saying my company is GDPR-compliant?
No. The GDPR governing authority has specifically outlined that no governing body or business has the authority to grant certifications in GDPR compliance. We offer the practical tools to ensure your business complies