VdS 10010

The guidelines VdS 10010 - VdS guidelines for the implementation of the GDPR (pronounced ten-zero-ten) of VdS Schadenverhütung GmbH contain guidelines and assistance for the implementation of a data protection management system as well as concrete measures for the organizational and technical implementation of the General Data Protection Regulation . They are specially designed for SMEs as well as for small and medium-sized organizations with the aim of achieving the implementation of the General Data Protection Regulation with the least possible effort.

Mark

The VdS 10010 are compact 32 pages long, 22 of which contain specific specifications. They have a clear language regulation for the binding nature of specifications (“must” / “must not” / “should” / “should not” / “can”).

The VdS 10010 recommends the implementation of established standards from the relevant areas such as the management of the processing directory, data protection impact assessment, information security, deletion concept, procedures and risk analysis. B. Information security management system , quality and risk management . However, companies can define their own procedures. However, these have to implement a few key aspects of the established standards. Part of VdS 10010 is the establishment of a data protection guideline , corresponding guidelines and procedures as well as the establishment of a continuous improvement process .

Development history

The VdS 10010 was created by a project team of VdS and external experts from June 15, 2017 with public participation. The work steps carried out were published during the entire development phase at short intervals, giving interested parties the opportunity to introduce their own optimizations and change requests. The VdS guidelines have been available in version 1.0 since December 15, 2017 and are available to the public free of charge.

Relationship to VdS 3473

VdS 10010 is closely related to the award-winning VdS 3473 "Cyber Security for Small and Medium-Sized Enterprises (SMEs)" , as both guidelines define a management system and are issued by VdS Schadenverhütung. So are z. B. Chapters 1 to 8 of both directives are almost identical.

Supportive measures

A VdS certificate can be obtained for the implementation of VdS 10010 .

Individual evidence

↑ Guidelines for the efficient implementation of the GDPR - SecuPedia. Retrieved on December 22, 2017 (German (Sie-Salutation)).
↑ VdS: Development of guidelines for the implementation of the GDPR . In: WIN Verlag . ( digitalbusiness-cloud.de [accessed on December 22, 2017]).
↑ Webshop of VdS Schadenverhütung GmbH, free download VdS 10010 - VdS guidelines for the implementation of the GDPR
↑ Messe Essen GmbH: security innovation award | security eat. Retrieved December 22, 2017 .

[1] Guidelines for the efficient implementation of the GDPR - SecuPedia. Retrieved on December 22, 2017 (German (Sie-Salutation)).

[2] VdS: Development of guidelines for the implementation of the GDPR . In: WIN Verlag . ( digitalbusiness-cloud.de [accessed on December 22, 2017]).

[3] Webshop of VdS Schadenverhütung GmbH, free download VdS 10010 - VdS guidelines for the implementation of the GDPR

[4] Messe Essen GmbH: security innovation award | security eat. Retrieved December 22, 2017 .