Frequently Asked Questions

What would you like to know?

Do you need help or have a burning question that you want answered as soon as possible? Just click on one of the headings below to find the answer.

Request A Demo now

General

The GDPR has introduced uniform standards throughout the EU for the first time. This has extensive implications for companies that work with personal data in any way. In addition to numerous additional obligations, the applicability of the GDPR since 25 May 2018 has significantly increased the scope of imposed fines, in particular. Depending on the severity of the violation, fines of up to 4 percent of the company's annual turnover or up to 20 million euros can be imposed, whichever is higher.

 

Software

A data protection software like Proliance 360 is an intuitive software that helps to digitally design data protection in a company and to implement it step by step. In the software, for example, numerous documents and templates (e.g. DPA, RPA, TOM) are available for use, tasks can be assigned to employees and each step is automatically documented – this way, any enquiry from the supervisory authorities can be answered easily and promptly. It is also easy to comply with requests from those affected and to carry out staff training. Step by step, your company is accompanied on the path to data protection compliance.

 

Data protection software such as Proliance 360 is suitable for any company that wants to set up internal data protection systematically and securely under guidance without impairing everyday business. In addition, data protection software like Proliance 360 is also interesting for external data protection officers or partners.

 

A data protection software like Proliance 360 is a digital data protection platform for companies. The platform allows you to centrally and clearly organise all aspects relevant to data protection, such as filing your record of processing activities (RPA), creating your technical and organisational measures (TOMs) and conducting employee training.

Data protection software can be used conveniently from wherever you are – all you need is internet access and a device. You don't need to worry about anything else: Our data protection software Proliance 360 is intuitive to use and guides you step by step through all the necessary applications.

If you process personal data automatically in your company, then the use of data protection management software is worthwhile. But even if you want to systematically manage your company's data protection without interfering with your everyday business, the use of such software makes sense. With Proliance 360, you will not only save time and money, but you will also always have an overview of all data protection matters in your company.

Our data protection management software Proliance 360 is a SaaS, i.e. a Software as a Service solution. You access the software via a device and then let Proliance 360 guide you step by step through all the necessary processes and data protection areas until your company's data protection concept is firmly cemented. Proliance 360 makes data protection understandable and easy to organise.

Proliance 360 was developed by the German company Proliance GmbH from Munich. The company has over 60 employees, all of whom are German-speaking.

Our hosting provider for the entire infrastructure is based in Germany (Frankfurt). All hardware is physically located in Germany.

The data processing center is certified to ISO/IEC 27001:2013, 27017:2015, 27018:2019 and ISO/IEC 9001:2015 (as of 2020).

Services

We have developed the data protection software Proliance 360 to digitally map data protection. The software enables you to centrally and clearly organise all aspects relevant to data protection, such as filing your record of processing activities (RPA), creating your technical and organisational measures (TOMs) and conducting employee training, regardless of time and place.

 

A register of processing activities (formerly: register of procedures) is a list of the information referred to in Art. 30 GDPR on each activity or series of activities carried out with or without the aid of automated procedures in connection with personal data, which is detailed enough to enable the verification of the fact that the creator is complying with his obligations. This documents which personal data is currently collected and processed in the company and how it is being protected.

In the context of "applicant management", for example, it is documented which applicant data is stored, on what legal basis it is processed, who has access to this data, where this data comes from, how it is deleted again and how this data is protected.

Technical and organizational measures are all protective measures that ensure the secure processing of personal data within a company, whereby these must also be economically justifiable with regard to the type and scope of the data processed. In this context, the legislator distinguishes between technical and organizational measures:

  • Technical measures: All measures which can be implemented physically, for example through structural measures such as alarm systems or through software and hardware specifications such as password-protected user accounts. Technical measures relate to the data processing operation and thus the processing activity itself.

  • Organizational measures: All measures relating to rules and specifications with which employees are encouraged to comply with data protection. This can be done, for example, by means of instructions given, service directives and company-wide agreements. These relate to the external process or the external framework conditions of the data processing operation.

An data processing agreements regulates the exchange of personal data between the client and the contractor.

In principle, a data processing agreements must be concluded with every service provider, provided that the service provider potentially has access to personal data and processes the data exclusively on the instruction of and for the purposed of he persons responsible. The person responsible is someone who exclusively or together with others decides on the means and purposes of the processing of personal data. Here, the decision on the processing purposes is significant, while the decision on the technical-organizational issues of the processing can also be delegated to the processor.

For example, an data processing agreements regulates which personal data an advertising agency receives, what this data may be used for (e.g., only to send one-off Christmas cards), and how this personal data must be protected by the advertising agency.

Training employees in data protection is not an expendable luxury, but prevents potential risks. This is especially true in the IT area, which is the starting point for many data protection mishaps. Using our Proliance 360 data protection software, you can easily conduct employee training: The training sessions can take place online in the software at a time set by you. This way, day-to-day business is not affected. The successful participation of your employees is subsequently rewarded with a certificate: In this way, in addition to raising the awareness of your employees in the area of data protection, you receive significant evidence for authorities on your data protection measures.