-
Data Records
-
Data Inventory tools
- Questionnaires, Interviews with process owners
- Analysis of docs and IT landscape
- Data mapping templates
- Data Flow Diagrams (SIPOS, Miro, etc.)
- List of purposes of data processing by RPPA
- Catalog of personal data by RPPA
- Categories of data subjects by RPPA
- Data Discovery tools
- Privacy Code Scanning
- ISO Information Asset Management Template
-
RoPA templates
- RoPA Templates by RPPA_RU
- Documentation templates by ICO
- RoPA templates by dataprivacymanager.net
- RoPA by Ireland DPC
- RoPA template by CNIL
-
Data Operations
-
Processing
-
Legal basis
- Algorithm for choosing a legal basis by RPPA
-
Consent
- Sample Consent Clauses
- Consent template for employees by RPPA
-
Legitimate interest
- Lawful basis assessment report by ICO
- Assessment checklist fo Legitimate interst
- Legitimate impact assesment template by ICO
-
Docs & Policies
-
Dosc checklist
- Structure of Privacy Docs by RPPA _ RU
- Checklist of documents by Roskomnadzor
- Docs checklist by ICO
-
Notices
- Privacy Notice Template by ICO
- Cookies Notice Template
-
Policies
- Privacy Policy Generator by Б-152
- Privacy Policy Generator
- Privacy Notice Generator by ICO
-
Agreements
- Data Processing Agreement by RPPA_RU
- Simple Data Processing Agreement
- Data processing agreement template
- Data sharing agreement template
-
Transfer
-
Transfer Impact Asessment (TIA)
- EU SCC TIA Template
- TIA Template by IAPP
- TIA draft practical guide by CNIL
- Data Transfer Agreement by RPPA_RU
- EU Standard Contract Clauses (SCC)
- Model transfer clauses around the world
- International Data Transfer Agreement by ICO
- Binding Corporate Rules (BCR)
-
Data requests
-
Data Subject Requests
- Data subjects requests register template
- Data subject request template
- Data subject response templates
- Channels for DS requests
-
Culture & Awareness
- RPPA Privacy trainings
- Privacy awareness trainings & workshops
- Staff training logs
- Privacy aterts & newsletters
- Posters, handouts, banners, videos
- Privacy games
- Stakeholders Engagement Plan
- Privacy Champions & Advocates
- Regular sessions with process owners (1+1)
- Advice, informal discussions, brainstorming
- Privacy certification support
- Presentation of Privacy projects
- Privacy Survay for employees
-
Metrics & Reports
-
Privacy metrics
- Privacy metrics example
- KPI / KDI / OKR frameworks
- Feedback Forms
-
Privacy Reports
- Template DPO Report to Management by IAPP
- Privacy Audit Report by ICO
- DPO ReportTemplate
- Privacy ROI Calculator
-
Protection
-
Measures & Safeguards
-
Privacy by Design
- Privacy by design by J. Cronk
- Privacy by Design checklist by ICO
- Privacy design patterns
- Privacy icons
- Privacy labels
- Customer dashboard
- Privacy comins
- Dark patterns
-
Security
- Security Measures Checklist by CNIL
- Security Policy templates
- On-line tool for the security by ENISA
- NIST Security Framework
- Security Checklist by ICO
-
PETs
- PET Guidance by ICO
- PET Report by OECD
- PET startups 2024
-
Breaches & Incidents
- Breach examples
- Incident Notice by RKN
- Data Breach reporting form by ICO
- Data Breach Register by ICO
- Data Breach forms by EDPS
- Data Breach Reporting Form by ICO
- ENISA Metodology of Breach assessment
- Data Breach Action Plan_EN
- Breach Investigation Report template
- Business continuity Plan by ICO
- ISO Incident Management Standard
-
Privacy Harms
- ENISA metodology
- Taxonomy of Privacy by D. J. Solove
- Privacy threats model by LINDDUN
- RKN metodology of harm assessment
-
Privacy risks
-
Risk management frameworks
- NIST Risk Management Framework
- ISO 31000 Risk Management standard
- ISO/IEC 27557:2022 Privacy Risk Management
- Privacy risk management by ISACA
-
Risk asessment tools
-
Privacy risks assessment (PRA)
- PRA Template
- Example of PRA process by Unilever
- Risk asessment tools by NIST
-
Data Protection Impact Asessment (DPIA)
- DPIA Template by ICO
- DPIA Template by FLN
- DPIA Template by VUB
-
Privacy Impact Asessment (PIA)
- PIA Template by CNIL
- Private Sector PIA Template
- PIA Template by ICO
-
Transfer Impact Asessment (TIA)
- EU SCC TIA Template
- TIA Template by IAPP
- TIA draft practical guide by CNIL
-
Risk visualization tools
- Risk Matrix Templates
- Risk register templates
- Risk dashboard templates
-
Projects & Process
- Data Flow Diagrams (SIPOS, Miro, etc.)
- Template GDPR Roadmap Gantt by DPO
- Project management software (Jira, Asana, Monday, etc.)
- Agile vs. waterfall PM
-
Privacy team
- GDPR RACI chart
- Gantt Pro_ team management tool
- Template GDPR Roadmap Gantt by DPO
- SmartSheet platform
-
PRIVACY PROGRAM
-
Privacy Program Frameworks
-
ICO Accountability Framework EN
- ICO Accountability Framework: RU
- ICO Accountability Framework_RU by RPPA
- Checklist of Privacy Controls by Privacy Advocates_RU
- NIST Privacy Framework
- ISO 27701:2019 Privacy Information Management System (PIMS)
- Nimity Privacy Management Framework
- Privacy Maturity Model
- Action Plan Template
- Privacy Management Plan by OAIC
-
Privacy Audit
- Gartner’s GDPR compliance audit checklist.
- Privacy assessment checklists by ICO
- Questionnaires, Interviews with business leaders
- Data Privacy Surveys
- Methodology of GDPR applicability by RPPA
- Privacy Audit Report by ICO
- Privacy dashboards
- ISO 27701 (PIMS) Gap Analysis Report