Mantua Services

GDPR: The New ParadigmCompared to previous European data privacy legislation, GDPR (General Data Protection Regulation) can be seen as a new paradigm:DPO (internal or external)Public companies must appoint a DPO (Data Protection Officer). It is also mandatory for private companies that handle sensit

GDPR

GDPR: The New Paradigm

Compared to previous European data privacy legislation, GDPR (General Data Protection Regulation) can be seen as a new paradigm:

DPO (internal or external)

Public companies must appoint a DPO (Data Protection Officer). It is also mandatory for private companies that handle sensitive data or profile individuals at scale.

extraterritorial

Organizations outside the EU (whose headquarters or servers are located outside the EU) are also subject to GDPR when targeting European citizens, especially on the web.

Right to be forgotten/right to erasure

The right to be forgotten and to delete allows individuals to alter their digital footprint so that they are in control of their digital lives.

Data protection by design and default

By default, Data Protection introduces the concept of data protection from the creation of a product to the start of a service, without the need for additional steps by the company or any of its employees.

Accountability

The concept of accountability mandates proof that an organization's privacy policy has been respected.

PIA (Privacy Impact Assessment)

PIAs (Privacy Impact Assessments) are generated in many situations, especially when the processing of personal data poses risks to the individual.

data breach

Data breaches need to be reported by the controller to the data protection authority (CNIL in France, ICO in the UK) within a maximum of 72 hours. In the event of a high risk, the controller must notify the relevant persons individually.

data portability

This concept ensures data portability between different service providers (for example, in social media, service providers that specialize in providing and managing email addresses).

Security measures

It is necessary to ensure that appropriate technical and organizational measures (TOM) are implemented to safeguard and secure personal data.

fine

Failure to comply with the GDPR can result in fines of up to 4% of a company's international financial turnover, or 20 million euros.

data minimization

Data minimization ensures that as little data as possible is collected. Therefore, the data collected must be relevant and limited to what is necessary for its purpose.

professional field

Our experience in GDPR compliance projects covers various fields of activity such as digital marketing, telecommunications, assistance in the social sector, IT technical support, energy, transport, heavy industry and geophysics. Benefiting from our areas of expertise, including technical, technical and operational, and legal frameworks; Data Privacy Professionals provide GDPR services tailored to your company's needs.

GDPR Services

Data Privacy Professionals provide complete assistance to VSBs, SMBs and MSBs with GDPR compliance and all other data privacy legislation .

Depending on your organisation's needs, we can provide a range of services:
Consulting and assistance (onsite or remote)
Data Protection Officer , (DPO) external or company external
Training courses (onsite or remote)
All-in- one package

The services of Data Privacy Professionals are the architects of your personal data. Audit phases, training courses, consulting, GDPR compliance and DPO (Data Protection Officer) are all included in our services.

Consulting Services and GDPR Compliance

Our consulting and GDPR compliance services are available on your company's premises or remotely.

These services put into operation a data privacy program that defines, layeres, and implements the necessary actions to achieve compliance and accountability, as they will also demonstrate the steps your company has taken.

These services are available in three tiers to best suit your needs:
•  GDPR compliant business tiers can start with a 1-day service.
•  GDPR Compliance Platinum is available after 5 days of service.
•  The GDPR compliant Titanium tier is available after 10 days of service.

 

GDPR Compliance Package

Packages are available for VSBs and SMBs with available staff and time to do their own GDPR compliance . To achieve this, the company uses and/or adapts the different deliverables contained in the packages provided.

Basic package

For VSB and freelancers

gdpr-basic package

standard packaging

Suitable for small and medium businesses

gdpr-standard package

GDPR and cybersecurity training courses for your company

The GDPR training course curriculum can be divided into three units:

Awareness Training Course

The GDPR awareness training course is open to the public.

Staff training courses

GDPR: Putting the theory of VSB, SMB and MSB into practice. This training course is for your employees, employees and subcontractors so they can master the fundamentals, GDPR challenges and implement good practices.

Cybersecurity: Raise awareness of product, service and process security for new information and communication technologies, good digital practices and digital skills for VSB, SMB and MSB. This training course is aimed at your employees and/or employees so that they can grasp the core principles of cybersecurity and implement routine actions to achieve good digital practice.

DPO training course
(Data Protection Officer)

This training session is for employees who will be DPOs inside or outside your company.

Tailored GDPR training

Data Privacy Professionals customizes GDPR training courses according to the size of your organization (start-up, SMB, MSB) and your field of activity , such as:

Aid in the social sector

Assisting and supervising struggling individuals: asylum seekers, providing assistance to company employees.

digital marketing

Analytics (cookies, fingerprints, Google Analytics, Piwik/Matomo), analytics, targeted advertising campaigns, fidelity programs.

medical field

Health-related data is a special kind of personal data because they are considered sensitive data.

sharing economy

A platform for creating connections in transportation areas, housing areas, rental between private individuals (C2C).

high tech

Big Data, Artificial Intelligence, Industry 4.0, Internet of Things (IoT).

digital transformation

Data protection is at the heart of procedures, tools and professional digital transformation.

business model

Business models evolve from product concepts to services.

local and international companies

 Data Privacy Professionals provides services throughout France , especially in the Ile de France (Paris region) and the Grand East :
• In Alsace (Bas-Rhin / Haut-Rhin): Strasbourg, Mulhouse, Cole horse.
• In Lorraine (Moselle, Meurthe and Moselle, Meuse, Vosges): Nancy, Metz, Thionville, Epinal, Saint-Dière, Balduc, Fore Bach, Saregmines.
• In Champagne-Ardennes: Reims, Troyes, Charleville-Meziers.

We also intervene abroad ( French, English and German ):
• Germany:
       • Bad Württemberg: Karlsruhe, Stuttgart, Fribourg, Offenburg
       • Saar (Saarbruck)
• Switzerland: Bale
• Luxembourg
• Belgium
• United Kingdom: London

contact us


Data compliance creates business value

Give us an opportunity to start to understand our needs and work together to protect your business.

Shanghai Digital Shell information technology co., ltd

Email
mkt@dpoit.com

Floor 8, No.690 Bibo Road, Pudong New Area, Shanghai

Home
About Us
Contact Us

Trust and Privacy Forum
adviser

Copyright © 2025 Shanghai Digital Shell Information Technology Co., Ltd All Rights Reserved.