After we established an initial overview of the process infrastructure of the organization, we created a processing directory template, wherein we specified the legally binding requirements with the EU-GDPR. In parallel, we made sure that the template was easy to use for the shelter’s staff.
Due to lasting COVID-19 restrictions, we were not able to make an “on-site” visit with the organization to jointly fill our template with content. Instead, we used our experience from many months of virtual client workshops and organized two remote workshops with some team members of the women’s shelter, who described in detail their extensive activities and offerings, as well as their current workflows.
Our BearingPoint team took the information from the interviews and workshop feedback to fill the directory. To ensure that the women’s shelter team is empowered to work on data protection requests independently, we wrote a handbook that addresses the most important questions regarding data protection in their specific environment.