We have a long history of advising in the public sector. The main services we provide in the public sector are:
DATA PROTECTION AND PRIVACY
- Consulting:
- General Data Protection Regulation (GDPR)
- Spanish Organic Law 3/2018, December 5th, Personal Data Protection y Digital Rights Guarantees.
- Applicable sectorial norms.
- Auditing.
- Legal support in sanctioning procedures.
- In-company and on-line training.
- Cookies auditing.
- Use protocol of the ICT.
- Digital disconnection protocols.
- DPO externalized service.
- DPO advisory service.
- Training to DPO. You can check out the recognized training courses at AEC (accredited body by ENAC and AEPD) through the following link https://dpd.aec.es/
NATIONAL SECURITY FRAMEWORK (ENS)
- Differential analysis.
- Adequacy and implantation plan.
- Training and awareness.
- SGSI maintenance.
- Internal audit.
NATIONAL INTEROPERABILITY FRAMEWORK
- Differential analysis.
- Adequacy and implantation plan.
- Training and awareness.
- SGSI maintenance.
- Internal audit.
CRITICAL INFRASTRUCTURES
- Drafting and updating the Operator Security Plan (OSP) and periodical updates.
- Drafting and updating the Specific Protection Plan (SPP) and periodical updates.
- Implementation and monitoring of controls.
TRANSPARENCY LAW
- Differential analysis out of legal adequation.
- Review/drafting good governance codes.
- Advisory services regarding the procedures of divulging information.
- Advisory services regarding the procedure of information access and dealing with information access requirements.
- Help / support in the implementation of the defined measures.
- Auditing.
ISO STANDARDS IMPLANTATION AND AUDITING
- Advisory services regarding the implantation and auditing of the different ISO standards (especially the ones related to IT):
- ISO 9001. Quality system.
- ISO 27001. Information security.
- ISO 22301. Business continuity.
- ISO 20000/ ITIL.
- Others.