You are responsible for any personal data you collect from clients or customers.
Failing to take the basic steps to protecting this data can expose your company to high fines and reputation issues.
Main Risks
SME companies are not immune

SME companies are not immune

Even small or medium size companies who are just developing their online presence are responsible for the data, including analytics, they collect and use from their customers and consumers.

If you are hacked, you are still accountable

If you are hacked, you are still accountable

Hackers are more likely to target small companies vulnerable to security gaps on their systems and websites. Allowing the data you manage to be accessed by non-authorized persons could expose your company to bad publicity and large fines.

Reputation can be lost in seconds, but recovery can take years

Reputation can be lost in seconds, but recovery can take years

Breaches happen every day and will be reported in the media. Transparency about how you process data will help your company keep the trust of your consumers and customers.

New restrictive legislations apply in the EU and Switzerland

New restrictive legislations apply in the EU and Switzerland

Even though legal requirements in Europe and in Switzerland are becoming more strict, you can become compliant with some simple actions.

Review your objectives for data collection

We help to define your company’s principles on privacy and how you demonstrate respect for your customers’ personal data.

Map out what, how and where the data is processed

We use a questionnaire to map the type of data collected, what tools you use to manage it, and what measures are in place (access, security, etc).

Highlight potential issues

We assess the risks given the data you collect online/offline and can prioritize corrective actions.

Review your website’s privacy notice and terms of use

We draft standard legal terms on your website with a user-friendly text.

Recommend an internal process to manage personal data

We list actions and provide input about data security and retention, privacy risk assessment and guidance in response to individuals’ queries and complaints.