Framework for the implementation and management of a "Personal Data Management System"
The adoption of this "system" is also necessary to respond to the two key concepts of the GDPR: "Privacy by Design" and "Accountability" which inspire most of its articles. In fact, the future of privacy cannot be assured solely by the process of compliance with the regulatory system; the fundamental difference with respect to the normative criterion is that the adoption of a Management System allows to verify both the effectiveness and efficiency of the organization, understood as the ability to reach an objective by optimizing the use of resources and processes.
A peculiar characteristic of a Management System is that it must provide for its updating in relation to the evolution of the context, both internal and external to the organization, while still guaranteeing the effectiveness and efficiency of the processes. This means having a proactive internal management technique.
Sinergetica Consulting has developed the PRIMO framework® which supports the design, implementation and maintenance of a Privacy Management System.