The current privacy law in Sweden, Personuppgiftslagen (PuL), introduced in 1998 will be replaced by the general data protection regulation (GDPR) in May 2018.
GDPR will increase the protection for EU citizens and require secure processing of privacy data. Organisations that do not comply with GDPR are at risk of having to pay a fee of 4 % of group revenue.
Performing risk analysis and mapping of information are critical tasks as a basis of your information security work. Our risk consultants can assist you in facilitating risk analysis within the privacy area and are experts in handling risk management tools such as STRIDE and LINDDUN. These tools will structure the risk analysis and make sure that all threats towards your information are considered. We deliver a documented risk catalog and a plan on how to prioritise your work going forward towards compliance.