GDPR

Data Privacy

Since 2018, the General Data Protection Regulation has been the global gold standard for privacy law, and its enforcement continues to intensify with record fines across Europe. This assessment examines your compliance across the GDPR's core requirements — lawful basis, transparency, data subject rights, Data Protection Officer obligations, Data Protection Impact Assessments, cross-border transfer mechanisms, processor management, and breach notification. It applies to any organization processing personal data of individuals in the European Economic Area, regardless of where the organization is established.

Domains

Questions

~39 min

Estimated Time

What You'll Be Assessed On

Scope & Applicability Applicability Check

3 questions

Principles & Lawful Basis (Art. 5–6)

6 questions

Transparency & Information Obligations (Art. 12–14)

3 questions

Data Subject Rights (Art. 15–22)

5 questions

Security of Processing (Art. 32)

3 questions

Breach Notification (Art. 33–34)

3 questions

Data Protection by Design & Default (Art. 25)

2 questions

Controller & Processor Obligations (Art. 24, 26, 28–30)

4 questions

International Data Transfers (Art. 44–49)

3 questions

Governance, DPO & Training

4 questions

Data Protection Impact Assessment (Art. 35–36)

3 questions

Step-by-Step

Answer questions one domain at a time with progress tracking.

Instant Scoring

Get a weighted maturity score and per-domain breakdown immediately.

Actionable Roadmap

Receive a phased remediation plan tailored to your results.

Takes approximately 39 minutes to complete.