GDPR and IT vendor contracts: Beltug tools and presentations

The GDPR comes into effect on 25 May 2018. As our members continue their preparations, we have worked to provide specific tools and targeted events to support them in the IT implementation. Below, you can find tools relating to your relationship with your IT vendor, templates to use internally in your company, and presentations with insight from our events.



IT vendor-related tools


Template Data Protection Clause, in cooperation with Allen & Overy (after login)

Beltug and Allen & Overy have created a template that Beltug members can use for the data protection clause of their IT services contracts. You can use this template as a starting point, and then customise it to take into account the specific processing, as well as the roles of the Customer and Supplier. While it has been developed for contracts between two companies in the EU, you can adapt it with additional safeguards if this isn't the case.


Questionnaire for your IT vendors (coming soon)

Many things are at stake when preparing and maintaining your compliance with the GDPR. Beltug is creating a list of core questions for you to ask your cloud providers. The draft list is being discussed with a select number of ICT/cloud suppliers, to gain their perspective and options for the best approach. We believe that this questionnaire will make a significant difference for companies on their way to GDPR compliance, so finalising it is our highest priority. We will send an Alert to all Beltug members when it is available.





Presentation for your Board, in cooperation with DP Office (after login)

Beltug members can use this presentation to inform their Board about the European Data Protection Regulation. Please feel free to use the slides and content as you wish, in your own templates and formats, etc. You may add or delete information according to your needs.


Data inventory, in cooperation with Cranium (after login)

Template (Excel) Register of Processing Activity: Data inventory first, compliance next! The road towards the GDPR starts with an inventory of the personal data you process.  Indeed, data inventorying is an essential step in your preparation: your organisation needs an inventory of all the types of information it processes, how that data will be protected, where the sensitive data sits. This tool helps you getting started building your register, as required by Article 30 of the GDPR.


Presentations on GDPR from our events (after login)


You can also check our Library page for more presentations


Dear visitor,

Access to more information about this topic and/or to download the paper is easy and fast, but exclusively for Beltug members (just login to get access).

Beltug gathers a lot of information. Here you find the advantages of Beltug membership

The Beltug Team

Click here to login