Data Protection Law Compliance Risk Analysis Test

Please tick the answers that best apply to your business:

In our company, distinctions have been made regarding special categories of personal data, general categories of personal data and privacy.
Trainings were provided and company policies were established to create a culture of personal data security and privacy.
Individual confidentiality commitments are signed by Company employees in accordance with their duties.
There are ISO27001, Access authorization matrix and Information Security procedures.
There is a Personal Data Protection Committee and a Personal Data Breach Notification Procedure.
Data security provisions are included in the contracts and security undertakings are also signed with data processors.
Data is not transferred abroad.
Clarification texts have been prepared for each situation in accordance with the law and the Board's guidelines.
Papers, folders, files, etc. containing personal data are kept in locked, fireproof and waterproof cabinets or drawers.
Our customers, financiers and partners include companies or individuals based in EU member states.