Already signed up for GDPR Tracker? If so, click here to log in.
Our GDPR Tracker is a simple to use, pay as you go, cloud-based application for logging and tracking details of applications and databases where personal data is handled. In addition, you can record and update details of Subject Access Requests and Data Breaches.
It is designed to assist you with your overall GDPR compliance obligations.
You start by recording details of all applications and/or databases which handle personal data, for example a contact management system, or your payroll, which may well be something operated on your behalf by someone else – a dedicated payroll service company, or your accountant for example, but for which you are still deemed to be the “Data Controller” (with the third party acting as a “Data Processor”).
For each application, you specify:
- what categories of personal data are stored,
- who the “data subjects” are (employees, existing and/or potential customers, etc.),
- who within your company manages the application,
- the timeframe for the data,
- other GDPR specific criteria (third parties with whom data is shared, security measures, etc).
As far as is practical, these details are selected from drop down lists, which you can add to and edit yourself.
Subject Access Request Tracking
Requests from individuals about their personal data held by you (“Subject Access Requests”) are logged and tracked.
Details of how you verified their identity (before providing them with information) are recorded, as well as other information specific to their request (for example dates of all communications – the GDPR regulations are very strict in terms of the maximum delay allowed for responding to Subject Access Requests).
Data Breach Management
Hopefully a “Data Breach” is something which won’t happen “on your watch”. But, if it does, the GDPR Tracker will assist you with managing it. The regulations set out procedures for reporting breaches to the Information Commissioner in certain circumstances. Using our tracker, you specify what actions have been taken (and which still need to be taken), including actions to minimise the risk of further data breaches in the future.
Cost
You can sign up to use GDPR Tracker for a free trial period of 60 days – click here to sign up for your free trial. After that, our monthly pay as you go charge applies. Prices start at £25 per month (excluding VAT), for a small company (up to 3 users, and 15 ongoing “transactions” – live applications, subject access requests and data breaches).
For larger corporates we have developed customised versions of the GDPR Tracker, with additional functionality specific to their business environment. Email us if you would like us to contact you to discuss this option.