We answer your questions !

In the era of Big Data and AI, all data flows faster… even the most sensitive.


The General Data Protection Regulation (GDPR) is a European regulatory text that came into force on the 25th May 2018.

It regulates the processing of data equally across the European Union.

The CNIL, Commission Nationale de l’Informatique et des Libertés, is the French supervisory authority in charge of ensuring compliance with and implementation of the GDPR.

It has monitoring and sanctioning powers of all kinds:

  • Administrative fines
  • Exclusion from public tenders
  • Criminal penalties
  • Damages
  • HR and occupational risks
  • Image deficit

  1. Designate a data controller
  2. Identify your processing operations
  3. Prioritise the actions to be taken
  4. Risk management
  5. Organise internal processes
  6. Documenting compliance

Data management through our solutions for GDPR compliance.



The Loi informatique et libertés, the legislative framework regulating the use of personal data, has evolved until the 25th May 2018, when the GDPR was created. With the entry into force of the GDPR, public and private organisations must be able to demonstrate that concrete actions have been taken to ensure the application of this legislation internally. Actecil accompanies you in the actions to be taken:

  • The treatment must be compliant and referenced in a register.
  • Additional analyses may be necessary (PIA, risk analysis).
  • New processes are mandatory (Privacy by Design, consents…).
  • There must be a documentary basis (Accountability = Responsibility).
  • The existence of a DPO (Data Protection Officer) is recommended (mandatory in some cases).

This is why we propose a 360º offer:

From the moment you collect, process and record personal data of an individual in paper and/or digital format, YOU ARE AFFECTED !


Concrete examples:


  • I have employees, I am affected.
  • I prospect for customers, I am affected.
  • I have clients, I am affected.
  • I am a subcontractor and I handle personal data of another company, I am affected.
  • I generate leads, I am affected.
  • I am a private or public organisation, I subcontract services, I am affected.
  • I am a DPO or referent of a company, I handle compliance and maintenance, I am affected.

Why doing RGPD trainings?

Raising your staff’s awareness of GDPR is a major challenge. Employees are also responsible for data protection and raising their awareness of the GDPR ‘s good practices helps to ensure the security of your customers’ personal data.

The DPO must inform and advise each employee of the company. It is therefore essential that he or she is trained in GDPR in order to provide you with the best possible support in your efforts to achieve GDPR compliance.

Securing your employees’ personal data helps to strengthen the bond of trust necessary for the smooth running of your company. To secure your employees’ data, it is important to train your HR in GDPR.

The GDPR implies a number of changes and new rules to be respected concerning the data process of the company’s customers and prospects. The marketing department must master the data processing specific to the marketing field and adopt good practices to prospect in a way that complies with the GDPR.

It is essential to secure your company’s data in order to avoid possible IT security breaches. Training your employees in good IT security practices (strong passwords, risks of public wi-fi, anti-virus and firewall, etc.) helps protect the company as a whole.

DPO assistance

This solution is a remote assistance by our expert DPOs to support your company in case of absence of the person in charge of the protection of your personal data (DPO/DPD, Quality Manager, IT Manager, …) or to accompany the latter during this period of containment.

DPO assistance can be provided:


  • To support the actions of your DPO, help him/her in his/her actions and check that everything is in order ;
  • To set up a Covid consulting action including a COVID treatment model, a telework addendum, an information collection support and good practices in telework;
  • As a replacement in case he is sick with Covid or other … (which we obviously do not wish him!).

    Depending on your expectations, we can take action:


    • By one or more one-day actions OR
    • In the form of an “e-ticket” (hourly rate).