Tel. (+49) 30-20 88 999 00

Data Protection Management – Our approach

Data protection is what we do best. By delegating your data protection management to us, you spare time and resources to focus on what you do best – developing and sustaining your business. Our work can be roughly split into 4 steps

  • As a starting point for integrated data protection managementan we describe of the work processes relevant to data protection within the Record of Processing Activities;
  • Then we work out proposal of easily applicable and practical solutions for data protection requirements
  • After mutual agreement we implement the data protection measures, carry out trainings and provide consultation
  • We continuously overview the progress and make sure the milestones are met

You can choose from our 4 data protection service packages and a special EU Representative package for non-EU-based companies. We are also happy to prepare an individual offer tailored to your needs.

1. Introduction of your data protection officer and analysis of data protection risks

The first step is to get to know your data protection officer. Together we assess the current data protection situation at your company. From here we identify your company’s current level of data protection and define the risks. Based on this, your data protection officer defines the next steps and discusses them with you.

2. Preparation of an action plan and implementation of data protection management

The As-Is analysis is the basis for a joint action plan. The aim is to implement a DSGVO-compliant data protection management system for your company with orderly and structured measures. This allows us to achieve, among other things, the following:

  • documentation and clarification of responsibilities,
  • data protection-compliant work processes,
  • the prerequisite for the legitimate and timely processing of inquiries by customers and supervisory authorities.
  1. Technical and organisational measures (TOMs),
  2. Record of processing activities (data controller and data processor),
  3. Privacy notice (website, for employees, other),
  4. Data protection impact assessment,
  5. Process for data breaches,
  6. Process for fulfilling the rights of affected persons,
  7. Management of consent forms,
  8. Management of the data processing agreements, examination of the suppliers and the used software (vendor review) and
  9. Work instructions and guidelines

3. Employee training and distribution of training materials

Parallel to the implementation of data protection management, we train the employees of your company. We want to make them fit for a safe handling of personal data in the company. The goal is to use business-relevant personal data, in particular customer data, in appropriate processes in a sustainable and data protection-compliant manner.


4. Continuous data protection consulting and regular status evaluations

Today, data protection is an essential precondition in customer relations. Therefore, the legally compliant treatment of data should be a self-evident necessity. To ensure that your data protection management is always up to date, we provide you with continuous support:

  • Information on current topics and legally relevant changes in data protection
  • Advice and regular status review by your data protection officer
  • Updating the documents and processing directories of your data protection management system
  • Review of data processing agreements
  • Communication with supervisory authorities and stakeholders
  • Training opportunities


We make it our task to position your company securely and efficiently in the field of data protection. We offer you versatile service packages and a competent and reliable support tailored to your needs.


Request a callback

Don't like filling out long forms? Great, then let's talk! Please leave your name and telephone number - and we will call you back.
  • Mit Absenden des Formulars erkläre ich mich damit einverstanden, dass die im Rahmen dieser Nachricht angegebenen personenbezogenen Daten in einer unter der Verantwortung der mip Consult GmbH geführten Datenbank ausschließlich für die Bearbeitung und Beantwortung dieser Anfrage verarbeitet werden und die mip Consult GmbH mir entsprechende, anfragebezogene Informationen per Post, E-Mail oder telefonisch zukommen lassen kann. Die Einverständniserklärung kann jederzeit zum Beispiel schriftlich an mip Consult GmbH, Wilhelm-Kabus-Str. 9, 10829 Berlin oder per E-Mail an mit Wirkung für die Zukunft widerrufen werden. Ihre Daten werden vertraulich behandelt und nicht an Dritte weitergegeben. Die Datenübertragung erfolgt verschlüsselt. Weitere Informationen zum Datenschutz und zum Widerspruch finden Sie unter
  • Dieses Feld dient zur Validierung und sollte nicht verändert werden.