Get in touch

Get in touch

  • This field is for validation purposes and should be left unchanged.

Privacy Notice

X

When you submit an enquiry via our website, we use the personal data you supply to respond to your query, including providing you with any requested information about our products and services. We may also email you several times after your enquiry in order to follow up on your interest and ensure that we have answered your it to your satisfaction. We will do this based on our legitimate interest in providing accurate information prior to a sale. Your enquiry is stored and processed as an email which is hosted by Microsoft within the European Economic Area (EEA). We keep enquiry emails for two years, after which they are securely archived and kept for seven years, when we delete them.

Reveal Menu
gdpr-toolkit
21843
a query
15865

4427

View the EU GDPR Toolkit

The full list of documents is shown below – all of these fit-for-purpose documents are included in the toolkit. Click on the individual links to view full samples of selected documents. The full document set will be available to download immediately after purchase.

The templates come in Microsoft Office format, ready to be tailored to your organisation’s specific needs. You can add and remove content, change the look and formatting; in fact anything you are able to do with one of your own documents, you can do with ours. The toolkit is designed to be flexible so that it can be adjusted to your needs and preferences.

As well as standard format and contents, the templates include example text that is clearly highlighted to illustrate the type of information that needs to be given regarding your organisation. Completed examples of some of the documents are also included to help you with your implementation.

Do you want a personalised toolkit? Purchase our Logo Replacer Service alongside each toolkit you want personalising and receive the toolkit complete with your logo and organization name on each Word and Excel document within 48 hours on UK business days. 

Now at Version 8, our GDPR toolkit reflects the current state of play for EU privacy and has benefited from continuous input from customers worldwide who have been using it to help their organisations become (and remain) compliant with the EU GDPR.

The GDPR toolkit package includes:

  • 120+ template documents – including policies, procedures, forms, checklists, tools, presentations, posters and other useful resources
  • Expert review of three completed documents
  • Lifetime toolkit updates – you will receive all updates to this toolkit for the life of the product
  • Email support with a consultant for as long as you need it
  • Exclusive access to our customer-only discussion group
  • Available as an instant download after purchase
  • Downloadable files to use for as long as required within the licensed company
  • One toolkit licence per company for unlimited users within the business

Download a free sample document from this toolkit to see how easy it is to use.

gdpr-toolkit
4427
  • 0 CERTIKIT GDPR Toolkit Guidance (Click to expand)

    • CERTIKIT Toolkit Completion Instructions

    • 13 pages
    • CERTIKIT GDPR Toolkit Version 8 Release Notes

    • 1 tab
    • CERTIKIT GDPR Toolkit Index

    • 4 tabs
    • EU General Data Protection Regulation 2016

    • 88 pages
  • 1 GDPR Preparation Project

    • GDPR-DOC-01-1

    • GDPR Compliance Project Initiation Document

    • 22 pages
    • GDPR-DOC-01-2

    • GDPR Preparation Project Plan (Microsoft Project format)

    • 1 plan
    • GDPR-DOC-01-4

    • GDPR Documentation Log

    • 2 tabs
    • GDPR-DOC-01-5

    • GDPR Briefing Presentation

    • 19 slides
    • GDPR-DOC-01-6

    • Executive Support Letter

    • 5 pages
    • GDPR-FORM-01-1

    • Compliance Evidence

    • 2 tabs
    • GDPR-FORM-01-2

    • Meeting Minutes

    • 6 pages
  • 2 GDPR Roles, Awareness and Training

    • GDPR-DOC-02-2

    • GDPR Competence Development Procedure

    • 16 pages
    • GDPR-DOC-02-3

    • GDPR Communication Programme

    • 13 pages
    • GDPR-DOC-02-4

    • Information Security Awareness Training

    • 37 slides
    • GDPR-DOC-02-5

    • GDPR Awareness Training Presentation

    • 20 slides
    • GDPR-FORM-02-1

    • GDPR Competence Development Questionnaire

    • 3 tabs
    • EXAMPLE GDPR Competence Development Questionnaire

    • 2 tabs
    • GDPR Awareness Poster (for data subjects)

    • 1 poster
    • GDPR Awareness Poster (for employees)

    • 1 poster
  • 3 Personal Data Analysis

    • GDPR-DOC-03-1

    • Personal Data Analysis Procedure

    • 10 pages
    • GDPR-FORM-03-1

    • Records of Processing Activities

    • 2 tabs
    • GDPR-FORM-03-2

    • Personal Data Analysis Form

    • 3 tabs
    • GDPR-FORM-03-3

    • Personal Data Analysis Diagram - VISIO

    • 2 tabs
    • GDPR-FORM-03-4

    • Personal Data - Initial Questionnaire

    • 6 pages
    • GDPR-FORM-03-5

    • Legitimate Interest Assessment Form

    • 11 pages
    • EXAMPLE Legitimate Interest Assessment Form

    • 7 pages
    • EXAMPLE Personal Data - Initial Questionnaire

    • 3 pages
  • 4 Privacy Policy and Notices

    • GDPR-DOC-04-1

    • Records Retention and Protection Policy

    • 12 pages
    • GDPR-DOC-04-3

    • Privacy Notice Procedure

    • 12 pages
    • GDPR-DOC-04-4

    • Website Privacy Policy

    • 12 pages
    • GDPR-DOC-04-5

    • CCTV Policy

    • 11 pages
    • GDPR-DOC-04-6

    • Data Masking Policy

    • 10 pages
    • GDPR-DOC-04-7

    • Data Masking Process

    • 13 pages
    • GDPR-DOC-04-8

    • Information Deletion Policy

    • 9 pages
    • GDPR-FORM-04-1

    • Privacy Notice Planning Form - Data Subjects

    • 6 pages
    • GDPR-FORM-04-2

    • Consent Request Form

    • 6 pages
    • GDPR-FORM-04-3

    • Privacy Notice Planning Form - Other Source

    • 6 pages
    • EXAMPLE Consent Request Form

    • 2 pages
    • EXAMPLE Privacy Notice - CCTV

    • 2 pages
    • EXAMPLE Privacy Notice - Employment

    • 4 pages
    • EXAMPLE Privacy Notice - Newsletter Signup

    • 2 pages
    • EXAMPLE Privacy Notice - Online Purchase

    • 2 pages
    • EXAMPLE Privacy Notice - Website Enquiry

    • 2 pages
    • EXAMPLE Website Privacy Policy

    • 8 pages
    • EXAMPLE Privacy Notice Planning Form - Data Subject

    • 3 pages
    • EXAMPLE Privacy Notice Planning Form - Other Source

    • 3 pages
  • 5 Rights of the Data Subject

    • GDPR-DOC-05-2

    • Data Subject Request Register

    • 2 tabs
    • GDPR-FORM-05-1

    • Data Subject Request Form

    • 6 pages
    • GDPR-FORM-05-2

    • Data Subject Request Rejection

    • 6 pages
    • GDPR-FORM-05-3

    • Data Subject Request Charge

    • 6 pages
    • GDPR-FORM-05-4

    • Data Subject Request Time Extension

    • 6 pages
    • EXAMPLE Data Subject Request Form

    • 2 pages
  • 6 Controllers and Processors

    • GDPR-DOC-06-2

    • Processor GDPR Assessment Procedure

    • 10 pages
    • GDPR-DOC-06-3

    • Processor Security Controls

    • 13 pages
    • GDPR-DOC-06-4

    • GDPR Compliance Statement

    • 6 pages
    • GDPR-FORM-06-1

    • GDPR Contract Review Tool

    • 2 tabs
    • GDPR-FORM-06-2

    • Processor GDPR Assessment

    • 6 pages
    • GDPR-FORM-06-3

    • Processor Employee Confidentiality Agreement

    • 10 pages
    • GDPR-FORM-06-4

    • GDPR Compliance Checklist

    • 7 pages
    • GDPR-FORM-06-5

    • Data Processing Agreement

    • 12 pages
    • GDPR-FORM-06-6

    • Sub-Processor Agreement

    • 12 pages
    • EXAMPLE Processor GDPR Assessment

    • 3 pages
    • EDPB Approved SCCs - Danish SA Jan 2020

    • 22 pages
  • 7 Data Protection Impact Assessment

    • GDPR-DOC-07-2

    • Data Protection Impact Assessment Report

    • 16 pages
    • GDPR-FORM-07-2

    • Data Protection Impact Assessment Questionnaire

    • 7 pages
    • EXAMPLE Data Protection Impact Assessment

    • 5 tabs
  • 8 International Transfers

    • EC Standard Contractual Clauses 4 June 2021

    • 31 pages
  • 9 Personal Data Breach Management

    • GDPR-DOC-09-1

    • Information Security Incident Response Procedure

    • 26 pages
    • GDPR-DOC-09-3

    • Personal Data Breach Register

    • 2 tabs
    • GDPR-DOC-09-4

    • Incident Response Plan Data Breach

    • 11 pages
    • GDPR-FORM-09-1

    • Personal Data Breach Notification Form

    • 8 pages
    • GDPR-FORM-09-2

    • Breach Notification Letter to Data Subjects

    • 5 pages
    • EXAMPLE Breach Notification Letter to Data Subjects

    • 2 pages
    • EXAMPLE Personal Data Breach Notification Form

    • 2 pages
  • 10 Information Security Policies

    • GDPR-DOC-10-1

    • Information Security Policy

    • 12 pages
    • GDPR-DOC-10-2

    • Mobile Device Policy

    • 13 pages
    • GDPR-DOC-10-4

    • Cryptographic Policy

    • 12 pages
    • GDPR-DOC-10-5

    • Physical Security Policy

    • 11 pages
    • GDPR-DOC-10-6

    • Anti-Malware Policy

    • 14 pages
    • GDPR-DOC-10-8

    • Electronic Messaging Policy

    • 12 pages
    • GDPR-DOC-10-9

    • Cloud Computing Policy

    • 10 pages
    • GDPR-DOC-10-10

    • Acceptable Use Policy

    • 10 pages
    • GDPR-DOC-10-11

    • HR Security Policy

    • 10 pages
    • GDPR-DOC-10-12

    • Social Media Policy

    • 10 pages
    • GDPR-DOC-10-13

    • BYOD Policy

    • 11 pages
  • 11 European Data Protection Board (EDPB) Guidelines

    • EDPB Guidelines on Data Portability 5 Apr 2017

    • 20 pages
    • EDPB Guidelines on Data Protection Officers 5 Apr 2017

    • 25 pages
    • EDPB Guidelines on Lead Supervisory Authority 5 Apr 2017

    • 12 pages
    • EDPB Guidelines on DPIA 4 Oct 2017

    • 22 pages
    • EDPB Guidelines on Profiling 6 Feb 2018

    • 37 pages
    • EDPB Guidelines on Transparency 11 Apr 2018

    • 40 pages
    • EDPB Guidelines on Online Services 8 Oct 2019

    • 16 pages
    • EDPB Guidelines on Contractual Lawful Basis 8 Oct 2019

    • 16 pages
    • EDPB Guidelines on Territorial Scope 12 Nov 2019

    • 28 pages
    • EDPB Guidelines on Use of Video Devices 29 Jan 2020

    • 33 pages
    • EDPB Guidelines on Contact Tracing for COVID-19 21 Apr 2020

    • 19 pages
    • EDPB Guidelines on Consent 4 May 2020

    • 33 pages
    • EDPB Guidelines on Data Protection by Design and by Default 20 Oct 2020

    • 31 pages
    • EDPB Guidelines on Concepts of Controller and Processor 7 Jul 2021

    • 51 pages
    • EDPB Guidelines on Restrictions Under Article 23 13 Oct 2021

    • 20 pages
    • EDPB Guidelines on Examples Regarding Personal Data Breach Notification 14 Dec 2021

    • 32 pages
    • EDPB Guidelines on Interplay Between Article 3 and Chapter V 14 Feb 2023

    • 24 pages
    • EDPB Guidelines on Certification as a Tool for Transfers 14 Feb 2023

    • 19 pages
    • EDPB Guidelines on Personal Data Breach Notification 28 Mar 2023

    • 33 pages
    • EDPB Guidelines on Data Subject Rights - Right of Access 28 Mar 2023

    • 63 pages
    • EDPB Guidelines on Identifying a Lead Supervisory Authority 28 Mar 2023

    • 14 pages

Testimonials

Certikit has certainly been a great tool for setting the foundations and structuring the GDPR process effectively.

MIS
UK

View all Testimonials