CONSULTUNG
Data protection
The legally compliant handling with individual-related in companies requires structured action in the organization and implementation of data protection requirements. In particular, there are many challenges for companies as a feature of the amendment of data protection law within the framework of the EU General Data Protection Regulation (GDPR).
The GDPR takes a risk-based approach and requires the implementation of effective technical and organisational measures in the processing of personal data. Accountability and the associated verifiability of the measures taken need a planned approach and regular review.

How good is the data protection in your company? Check it out now with our Data Protection quick check and get the results within a few minutes.
Duty or chance?
The compliance of the legal requirements in the course of setting up a data protection-compliant organization can have a positive impact on the company as a whole in many ways:
+ Reduction of liability risks and image demages
Protects from sanctions like fines
Prevention of data failures
+ Creates trust for customers and partners
+ Input for compliance of the requirements in the context of certificates
+ Process optimizing
Organization and employee protection
Stabilization of the awareness of employees for weakness points in processing data
Duty or chance?
The compliance of the legal requirements in the course of setting up a data protection-compliant organization can have a positive impact on the company as a whole in many ways:
+ Reduction of liability risks and image demages
-
Protects from sanctions like fines
-
Prevention of data failures
+ Creates trust for customers and partners
+ Input for compliance of the requirements in the context of certificates
+ Process optimizing
-
Organization and employee protection
-
Stabilization of the awareness of employees for weakness points in processing data
Status quo
How are you positioned in terms of the GDPR?
The following questions are intended to provide you with information on where your company stands with regard to data protection. If you can answer "yes" to all the questions, then you are well positioned in terms of the GDPR. Make sure you stay that way and review the questions regularly. If you have answered one or more questions with "No", then you urgently need to take action. We are happy to support you.
Have you sensitised your employees with regard to data protection and trained them within the last 18 months?
Are all processes, in which personal information of employees, customers, etc. is processed documented?
Do you know what personal data you can or must save and when it must be deleted ?
Does your company have a complete overview of all technical and organisational protection measures?
Can you provide information about which data of an employee or customer you process and for what purpose ?
Have you concluded the necessary commissioned processing agreements with all your cooperation partners and suppliers?
Data protection
Our Portfolio
Datenschutz Check
Analysis, education and valuation
Initial workshop data protection
Analysis of the data protection organization and restructuring
Designation of the data protection officer
Assumption of the legal tasks of the DSB
Datenschutz Check
Analysis, education and valuation
Initial workshop data protection
Analysis of the data protection organization and restructuring
Designation of the data protection officer
Assumption of the legal tasks of the DSB
Data protection
Why with us?
Expert and reliable external data protection officers
Connection of organizational, legal and technical competences
Networking with experts (specialist lawyers IT law, experienced technicians, software manufacturers)
Longterm experience in data protection consulting
Synergy effects by advising companies of different sizes and industries

„Die strukturierte Herangehensweise und die fachliche Qualität bei der Umsetzung einer Datenschutz-Strategie haben mich überzeugt.“
Stefan Aulehner
Leitung Medienproduktion & IT
Telefonbuch-Verlag A. & M. Kunze AG
Datenschutz Check
Take the opportunity to turn the "evil of data protection" into a clear and manageable To Do, which will improve you and your company and bring you forward. We come to your company and carry out a data protection quick check and give you appropriate recommendations for action.
Introduction of the basis of the EU General Data Protection Regulation
-
Rights and duties of the person responsible
-
Rights of the person concerned
-
Technical and organazational actions
-
Duty for documentation
-
Contract data processing
-
Legal basis
-
Rights and duties of the person responsible
-
Rights of the person concerned
-
Technical and organazational actions
-
Duty for documentation
-
Contract data processing
-
Legal basis
Estimation of the effort
-
Collection of information for the company organization
-
Estimation of the effort for the initial workshop and the analysis of the data protection organization
Explanation of the process of the initial workshop
Do now our Data Protection quick check. It will give you an orientation of how good the data protection is in your company.
Initial workshop data protection
The aim of the workshop is to enable you, as the person responsible, to identify the need for action to implement the requirements.
Analysis of the data protection organization and recognition of recommended actions regarding the following requirements:
Compliance of information duties
-
Data protection policies on website
-
Collection of individual-related data
Register of the handling activities
-
Creation and completeness
Legitimacy of the data processing
-
Purposes
-
Basis for legitimacy
Contract data processing
-
Service provider
-
Contracts
Rights of person concerned
-
Processes for guarantee
Right to data portability
-
Present implementation
Data protection via technical creation
-
Present implementation
Security of the treatment
-
Technical and organazational actions
-
Process and risk evaluation
Delete concept
-
Current implementation
Automated decisions
-
Existent profiling
Handling of data regarding denunciations / crimes
Workshop / Awareness of the employees
Estimation of the data protection consequences
-
Process risk evaluation
Guidelines for data protection
Development and supply of a proceed plan
Supply of a document structure like templates and guides regarding the analysed topics.
Appointment of the data protection officer
You want the data protection of your company to be in expert hands? As your external data protection officer, we take care of all the necessary tasks for you and you can continue to focus on your core business.
How does it work? Which tasks do we take care for?
-
Nomination to data protection agent and deputy
-
Notification at the responsible surveillance authority
-
Advice on data protection law in the area of GDPR
-
Execution of workshops for the employees
-
Coordination of the requests of the people concerned
-
Coordination of the communication with the surveillance authority
-
Sustainability of the technical qualification
-
Information of the general manager regarding reforms in data protection rights
-
Guarantee of the continuity via visits every half year
-
Data protection legal consulting when implementing new processes
-
Contact person in all data protection legal questions in your company
Hear what our customers say
References

„Vor dem Hintergrund der Einführung unseres Webshops haben wir auch die Organisation des Datenschutzes neu aufgestellt. Die Experten von Kutzschbach haben unsere Prozesse auf Datenschutzkonformität überprüft und entsprechende Handlungsempfehlungen gegeben. Sogar ein anstehendes Datenschutzaudit des TÜV wurde in kurzer Zeit vorbereitet und professionell abgewickelt. Der Auditor hatte nichts zu beanstanden. Mit dem Engagement eines externen Datenschutzbeauftragten von Kutzschbach haben wir Rechtssicherheit geschaffen und ein Stück mehr Vertrauen bei unseren Kunden und Partnern gewonnen.“
Emanuel Fischer
IT-Leiter
Bauwaren Mahler GmbH & Co. KG
Your link to our