Our Managed Privacy Compliance subscriptions are legal services that you purchase either for a monthly or 12-month subscription. We have several different services available depending on your needs. Our services focus on privacy and data security law compliance. Currently, our Managed Privacy Compliance subscriptions cover regulatory compliance with respect to the California Consumer Protection Act and the EU’s General Data Protection Regulation. We also offer custom packages comprised of smaller suites of our services that are available on a monthly subscription basis.
Our Managed CCPA Compliance subscription is a monthly or annual subscription for Vicis to manage your CCPA compliance program. Our Managed CCPA Compliance subscriptions include several services that will help your organization meet its CCPA compliance obligations such as managing your organization’s data inventories, data maps, internal/external privacy policies, and consumer access requests. We will also perform a formal validation of your organization’s CCPA compliance program every 12 months. For an additional fee, we also provide breach notification and vendor management services.
Our Managed GDPR Compliance subscription is a monthly or annual subscription for Vicis to manage your organization’s GDPR compliance program. Managed GDPR Compliance includes a number of services that will help your organization meet its GDPR compliance obligations, including designation as your DPO, annual GDPR compliance training for employees, as well as managing your data inventory, data maps, internal/external privacy policies, data subject requests, breach notifications, and vendors. We also assist with data protection impact assessments (DPIAs) and perform a formal validation of your organization’s GDPR compliance program every 12 months.
Vicis provides CCPA validation services to clients that need to demonstrate their CCPA compliance to other parties. A CCPA Validation or audit program offers a holistic framework for reviewing the complete spectrum of data-processing practices in the context of the CCPA. During a CCPA validation, Vicis performs a comprehensive evaluation of program-level measures such as privacy controls and evidence of those measures to ensure that the processing of personal information conducted by an organization, or by a third-party service provider on its behalf, is performed in compliance with the CCPA. A CCPA Validation publicly validates an organization’s CCPA compliance and delivers documentation that can be shared with potential customers or business partners.
Vicis provides GDPR validation services to clients that need to demonstrate their GDPR compliance to other parties. A GDPR Validation or audit program offers a holistic framework for reviewing the complete spectrum of data-processing practices in the context of the GDPR. During a GDPR validation, Vicis performs a comprehensive evaluation of program-level measures such as privacy controls and evidence of those measures to ensure that the processing of personal information conducted by an organization, or by a third-party service provider on its behalf, is performed in compliance with the GDPR. A GDPR Validation publicly validates an organization’s GDPR compliance and delivers documentation that can be shared with potential customers or business partners.
The GDPR requires that certain organizations appoint a DPO who acts as the head of an organization’s privacy compliance program. Under the GDPR, a DPO is responsible for working towards legal compliance with EU data protection laws, monitoring processes such as DPIAs, overseeing employee awareness of data protection laws and compliance obligations, and working with regulatory authorities as needed.
If you are subject to the GDPR then you will need to appoint a DPO if (1) you are a public authority / body, or (2) your core activities (a) require large-scale, regular and systematic monitoring of individuals, or (b) consist of large-scale processing of special categories of sensitive data or data relating to criminal offences on a large scale. Appointment of a DPO is mandatory for organizations that satisfy any of the above scenarios, although other organizations can still appoint a DPO voluntarily. The same duties and responsibilities will apply to voluntarily-appointed DPOs.
However, having a DPO appointed is strong evidence that an organization is taking its data privacy and protection responsibilities seriously. If you are unsure whether you need to appoint a DPO or would simply like to understand more about the requirements, Vicis can help you understand what is required of your organization in order to comply with the requirements of the GDPR.
Our subscription services are billed on a monthly or annual basis. Fees for our services act as a retainer to provide services to you for the following time period. Please click here to find out more about our pricing and services.
We have worked to make our sign-up process as straight-forward as possible. Once you’ve determined that you would like to sign up for our services, simply select the option you want and follow the instructions. You’ll be asked to create an account with us and then you’ll be taken through our sign-up process. Click here to get started.
After selecting the services you would like to subscribe to, you will be able to complete the purchase process. We currently accept payment by credit card only. We use Stripe to handle credit card transactions made on our website. All credit card data is sent directly to Stripe without passing through our servers.
Following the purchase of a subscription but prior to entering into an executed engagement letter between you and Vicis Law, we will review your request for services and perform our internal diligence process to evaluate if we are able to represent you as a client. If we determine that we are able to represent you as a client, we will send you an engagement letter to sign which contains the specific details of our engagement with you.
It typically takes us around 2 business days to complete our review of your request, complete the payment process, complete the engagement letter process and set up a meeting with new clients to begin. We may require more (or less) time depending on the complexity of your specific situation.
If you are interested in changing the scope of services, please contact us at [email protected].
We would be happy to speak with you about your privacy compliance needs. Please contact us and we will be in touch with you to set up a convenient time to speak.
You can cancel your subscription at any time. You may cancel a current subscription by logging into your account and cancelling your subscription.