GDPR Article 30 mapping and compliance support for real estate SME

Chaucer / Chaucer Digital / Case Studies / GDPR Article 30 mapping and compliance support for real estate SME

Our client needed help with:

  • Understanding the data flow and processing activities of personally identifiable information relating to the GDPR regulation, most notably that pertaining to Article 30
  • Support the client with BAU transition including training for key staff

Our approach:

  • Chaucer’s goal was to ensure that the customer has the resources to demonstrate that it is compliant with GDPR

The results:


processes, policies and procedures were yet to be started (Controllers Checklist and gap report)


Polices reviewed:

  • External & internal Privacy Policy
  • Data retention
  • Staff Awareness Privacy Training
  • Breach notification


data flows mapped and assessed


days to complete the review and initiate prioritised changes

How we delivered these results:

  • Article 30 process mapping
  • Decisions for lawful basis of processing
  • Legitimate interests assessments
  • Article 28 Data Processing Agreements
  • Basis of Consent & Records
  • Drafting IT Security Policy
  • Paid data protection fees
  • Technical and Organisational Measures for Security of Personal Data
  • GDPR Cheat Sheet (BAU)
  • To do list

If you think we can help you to implement your project or programme strategy, please call us on:
+44 (0) 203 141 8400 in UK/Europe, or ​​​+1 713 821 1783 in the USA.

Alternatively, please send us some brief information and we can discuss things in more detail.