DPIA for an eCommerce Fidelity Program
The client – an eCommerce business based in Bulgaria, launched a fidelity programme that needed to be compliant with local and EU rules.
Firstly, it was necessary to understand the impact of the GDPR on their project. Secondly, the client requested a detailed action plan outlining the measures to safeguard their customer’s personal data.
To comply with Article 35 of the GDPR, a Data Privacy Impact Assessment was performed.
Informed Consent management procedures were created to address Article 4 of the GDPR.
A cloud-based solution for data subject’s requests helped comply with Articles 12-23 GDPR.