A number of measures have to be put in place to be able to demonstrate control over privacy and information security. In certain cases, for example, you must carry out a Data Protection Impact Assessments (DPIA), keep a processing register, handle data breaches correctly and take appropriate measures to manage risks. You must also carry out audits and make users aware of the risks. The GDPR states that a management system must be put in place for this purpose, but that’s easier said than done for many organisations.
The CyberManager will help you set up and implement this management system step by step to comply with the GDPR. This makes it easier for you to comply with the GDPR. The CyberManager also fully aligns with an Information Security Management System (ISMS) on which information security standards are based. This allows you to easily comply to the ISO27001 standard, or the derived NEN7510, BIG, BIR and IBHO for the care, local and national government and education respectively.
The CyberManager also arranges the testing of your security (Technology) and the risk awareness of your employees is regulated (People)