Demystify data protection and make it more accessible
Vision
My Services
Audit
Consulting
Trainings & workshops
B2B
Data protection is a matter for the boss.
Legality obligation and guarantor status establish a liability for the data protection controller (sole proprietors, managing directors, board of directors, etc…) to take the necessary measures to continuously ensure the prevention and avoidance of data protection violations, to monitor and stay up-to-date. For the applicable standards (GDPR, BDSG, ISO 27701, etc.), the legal form, size or economic influence of the company are irrelevant. In other words, data protection extends from sole proprietorships to globally active and listed companies.
Due to the dynamics in the topic (ever-increasing volume of standards, regular and ever stricter judgments and harsher sanctions), it is advisable to entrust an organization’s strategy with regard to data protection compliance to good, reliable and professional hands and to record them in a sustainable system. For, documentation is the key.
As a data protection expert, I have the necessary knowledge and position for a systematic and strategic approach to achieve the fulfillment of the data protection requirements in your company.
B2C
Did you know?
The European Commission has dedicated itself to your protection as an individual (natural person) with this remarkable work: 31 letters “General Data Protection Regulation” abbreviated “GDPR”, preface (58 pages), GDPR (99 articles and 173 recitals), rounded off with the 86 paragraphs of the revised Federal Data Protection Act (BDSG-Neu) and other supplementary regulations.
What’s interesting here?
The simplicity that you as the data subject now enjoy when asserting your rights!
Your fundamental right to informational self-determination is defended by the GDPR vis-à-vis the companies (controllers) in numerous articles. Firm course has been set: the legal position is now held by the human being, the natural person: YOU.
The loss of control over the processing of your personal data (who, how, what, how much, for what, from where, where to, since when, until when, etc.) constitutes a violation of your personal rights, combined with emotional stress and must be compensated.
What rights do you have as a data subject?
I will be pleased to explain this to you in a personal conversation and will be happy to support you in asserting and enforcing them. For example:
<< The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed; if this is the case, he or she shall have a right of access to those personal data and to the following information: …>> Article 15(1) of the GDPR.
My services for you
- Survey of the current status of the data protection situation and submission of solutions
- Data breach handling
- Data Protection Impact Assessments (DPIA)
- Balancing of interests assessments (LIA)
- Third Country Data Transfer Impact Assessment (TIA)
- Order processing (AV)
- Technical and organizational measures (TOM’s)
- IT and information security
- Creation of the privacy policy
- Optimization of data protection management systems (DSMS) and other tools
- Project support (Privacy by Design and Privacy by Default)
- Process descriptions, creation and provision of blue prints
- Coordination with works council
- Interloculocutor for data subjects, lawyers, courts and supervisory authorities
- Preparation for certification and the data protection seal according to ISO 27701
- Formation and training of a DS coordinator pool
- Follow-up business: compliance, organizational development and personnel issues
- Interpreting and translating
- Etc.
Ignorance is no excuse against punishment!
I take care of all your data protection topics and organize your data protection landscape from A to Z, so you can concentrate on your core business.
The company
Chantalle Wagne Consulting
Is a consulting company that works purposefully and solution-oriented.
Organized, customer-oriented and with the ability to present complex issues in a simple way, Chantalle Wagne Consulting is your reliable partner.
With a focus on data protection consulting, I look after companies and customers according to B2B and B2C principle.
Thanks to my well-founded expertise gained during many years of experience, my long-term thinking and cooperation at eye level, I question your established business processes in order to bring them into line with data protection requirements. I anticipate possible risks and develop solution-oriented concepts. The conception takes place in close cooperation with you, my customer.
My self-developed training and exercise tool contributes to this. It is flexible, adaptable and efficient.
Following my “flash mob strategy”, I come by agreement, develop a suitable data protection culture that is understandable, permanent and profitably anchored in your company. The culmination of my advice is the achievement of a data protection seal for your products or services.
At the end of the project, you will be able to assess data protection processes well and handle them independently. However, I am always available for you when you need me and will keep you posted about changes and news in the data protection landscape.
My values
My aim is to make data protection both understandable and accessible to you and to guide you gently but efficiently to the advantageous side of it. I pledge respect, understanding, transparency, care and vision to my customers.
Along all my business processes, I keep on fulfilling these keywords, that is my promise.
Respect
Respect is based on reciprocity when working together on an equal footing.
Transparency
Transparency not only in terms of billing, but also in the way information are disclosed. Data protection can only be fully implemented if all parties play with open cards.
Understanding
An understanding of data protection is indispensable. The employees should not only be informed, but above all trained in such a way that data protection is implemented well and gladly by them.
Care
Care: I am disciplined and always want the best for my customers.
Vision
Vision: I always strive for sustainable, long-term, profitable and budget-friendly solutions for my customers.
The current top 5 fines
If you think Data protection is expensive, try no data protection!Topics of the month
On 27.12.2022, the conversion period for the new standard contractual clauses (SCC) ends! Are you affected? Are you ready? I am happy to assist you.
If you transfer personal data outside the EU and EEA, you must ensure that the level of protection in the country of arrival is not undermined. Therefore, you must take guarantee measures, such as the Standard Contractual Clauses (SCC).
In June 2021, the EU Commission published the new SCCs and granted a transitional period until 27.12.2022 to adapt the contracts concluded under the old SCCs.
I will be happy to assist you with the examination and implementation. Do not hesitate to contact me.
Use of Google Fonts can lead to damages!
After Google Analytics, the use of Google Fonts on websites has now been declared non-data protection compliant. The plaintiff was awarded damages of € 100. I strongly advise you to check your website and adjust if necessary. Carefully check cover letters received on the subject and, if necessary respond to them in time.
Let me show you how to.
About me
Data protection has always been a companion and an important part of my tasks and projects. I always implemented data protection regulations in my business transactions. Later, I switched to the role of coordinator to accompany processes and projects in an advisory capacity from a data protection point of view.
After successfully completing my law studies, I worked for a global automotive industry group for over 22 years.
My professional career spanned from the legal through the finance department to the HR area. I was able to gain well-founded and deep experience, not only in administration (so-called white-collar world) but I was also responsible for consulting a production division (so-called blue-collar world) consisting of many crafts over several years. I was mainly responsible for advising managers and top managers and worked transnational.
As a jurist, certified auditor, data protection officer and compliance officer, I would like to apply my knowledge and skills in such a way that your data protection concerns are solved to your complete satisfaction.
What are my features?
My 4 in-1 principle: I can sit on both sides of your desk (audit and consulting) and at the same time have a bird’s eye view in terms of compliance and legal advice.
My profound cross functional knowledge makes it easier for me to understand your processes across the divisions.
My “flash mob strategy” leads to considerable financial benefits for you.
My availability: Multilingualism at Native Speaker level and interculturality.
My self-developed training and exercise tool is flexible, cost-neutral and efficient for you.
Last but not least, my passion for data protection and knowledge transfer, coupled with my customer orientation, will awaken your understanding of data protection in no time and anchor a lasting data protection culture in your system.
Please let yourself be tapped, it can only do you good!
Chantalle Wagne
Founder
„For you, I have developed my mission and a vision, which I pursue conscientiously and structured until it is crowned by a data protection certification and/or a data protection seal for your product and services, following my „FLASHMOB STRATEGY”.
What you always wanted to know about privacy (FAQ)
Your questions / My answers
Who is protected by the GDPR?
The natural person; i.e. You and I as individuals. The GDPR uses the term “data subject”.
What is protected and against whom?
Against any abuse of rights and influence over your data by the companies. The GDPR calls the company the “controller”.
Who penalises?
The competent supervisory authority. There is one per german State. For example, LfDI in Baden-Württemberg.
What is a rule violation?
Any data processing operation that does not comply with the provisions of the data protection regulations. For example: wrong e-mail distribution list, non-training of employees on data protection, non-compliant cookie banner, etc.
What are the penalties for rule violations?
The caps for GDPR fines are, depending on whichever is higher
- EUR 10 million or 2% of previous year’s worldwide turnover for minor infringements
- EUR 20 million or 4 % of the previous year’s worldwide turnover for serious infringements
The size of the company does not matter. However, some factors may influence the determination of the fine: Is the violation due to intent or negligence? How well did the company cooperate with the regulator in clarifying the matter?
It's all so annoying! What are the benefits of GDPR compliance?
By complying with the GDPR, you protect the privacy of your customers, employees and business partners and thus respect their right to informal self-determination.
By protecting personal data, you are also protecting your product and trade secrets. Your so-called crown jewels. You improve your IT and information security, you streamline your processes and save costs, you create a better overview of your overall processes.
It also gives your business additional opportunities and visibility; e.g. certification, privacy seals, trust of third parties and stakeholders.
Where do GDPR regulations apply?
They apply to all organisations in the EU and the EEA (establishment principle), as well as to organisations that do business in the EU and EEA area and process data of EU citizens (marketplace principle).
My company does not even have employees and yet has to appoint a data protection officer (DPO). How do I do that?
You only need to appoint a DPO if your company has at least 20 employees who regularly process personal data on a large scale. If the main activity of your company is the collection and processing of personal data, you must in any case appoint a DPO. E.g. healthcare, market and opinion research institutes, security and surveillance companies.
In addition, it is imperative to have the support of a DPO for all processes that require a data protection impact assessment (DPIA).
What are the advantages of a data protection officer?
As an expert, the DPO primarily supports you in complying with data protection regulations from the relevant regulations. He helps to understand the regulations, to anticipate and minimize the risks, your business processes through technical and organizational measures (TOM’s), to optimize and document, to conclude data processing agreements in compliance with data protection regulations (AV) and to accompany your projects (Privacy by Design / Privacy by Default).
The DPO advises top management, sensitises employees and, if necessary, communicates with the supervisory authority. Therefore, he should always be involved in the run-up to the business processes.
What are the advantages of an external DPO?
The external DPO looks at the company’s processes with neutral eyes. He is an expert and has certified and in-depth knowledge. He is always up to date with the latest legislation and can therefore react in good time. This minimizes the risk of data breaches for the organization. The acquisition of his expertise does not fall within the budget of the organization.
Chantalle Wagne Consulting
Phone
Social Media
Feel free to connect with me on LinkedIn.
Note on the contact form
Required fields are marked with *. In order to be able to process your request or your order, I need your Name, as well as your e-mail address for any queries.
Via the message field you can change or describe your request. The more details you provide, the better I can process your request.
Privacy policy
If you contact me via the form, the information provided will be solely stored to process your request and or used for any follow-up questions. This data will only be passed on upon your consent. The processing of the data entered in the contact form is therefore carried out exclusively on the basis of the fulfilment or initiation of the contract (Art. 6 (1b) GDPR).