CENTRL's Data Inventory module allows you to create a GDPR data inventory as required by GDPR Article 30. Furthermore, you can create, publish, and evaluate GDPR assessments on your processing activities and third-party processors as required by GDPR Article 35.
In order to get started, there are five easy steps to follow to complete your company's GDPR process.
1. Setup DPO Organization
System Administrators can learn more about how to create new users and assign appropriate company roles (Questionnaire & Issues Management Admin) by visiting the following pages:
Note: System Administrators will be set up for the first instance by the CENTRL Support Team.
2. Setup Partners
After creating users and assigning roles, CENTRL users can add external partners to their system. These external partners can then be used to define third-party controllers for processing activities.
3. Create GDPR Data Map
1. Create Internal functions for your organization. Click here to learn how to create Internal functions.
2. Create processing activities in which you are a controller. You can add (data subjects) to fulfill the obligations required by article 30. Click here to learn more about creating a processing activity as a controller.
3. Create processing activities in which you are a processor. You can define which controllers are associated with each processing activity. Click here to learn more about creating a processing activity as a processor.
4. Create, Publish & Evaluate Assessments
After creating internal functions and processing activities as a controller or processor view, users can create, publish and evaluate standardized GDPR Readiness and DPIA Questionnaires or use your own personalized questionnaire to internal departments and third parties. When you publish a questionnaire, your internal departments and partners will be able to respond to your questionnaire using CENTRL's platform.
To learn more, click on Create and Publish a GDPR Readiness and DPIA Questionnaire.
Once a questionnaire published created and published, users can evaluate questions, assign specific sections to team members and
To learn more, click on Evaluating Questionnaire Answers
When evaluating questionnaire answers, users can create issues identified by the Readiness or DPIA Assessment. To learn how to create an issue, click here.
5. Complete Assessments
After evaluating the assessment, users can mark the assessment as complete and update the risk of the processing activity if desired.
For example, you could have sent a DPIA to one of your processing activities. After receiving the answers and evaluating the assessment, you can update the risk of the processing activity based on the calculated score of the assessment.
To learn more, click on Completing a GDPR Assessment