Data protection has become a major concern for companies for some years now. With the European General Data Protection Regulation (GDPR) mandating new norms for data protection, organisations need to know what data they have, how to secure it and also effectively manage it to identify new business opportunities. France-based TNP Consultants helps various enterprises tick all these boxes and provides them with GDPR-related consulting for all their data protection and governance needs.
“Our goal is straightforward—to make the protection of personal data a competitive advantage and trust factor for the clients, whether they are in a B2B or a B2C activity,” states Florence Bonnet, Director, TNP Consultants.
As a privacy and data protection expert, Florence guides the GDPR consulting team at TNP to provide data protection, data governance, and software technology consulting to a multitude of organisations. A decade ago, she created her own company of data protection consulting called CIL Consulting. At the beginning of 2017, she decided to join TNP. Since then, her team is part of a TNP’s community called DATA4, with GDPR and security experts that have specialised knowledge of data architecture, data analytics, data governance and data protection. This community was built to offer services around data usages to not only reconcile regulatory requirements and business issues but also help the organisations to anticipate the design, legal, and ethical issues related to data processing.
“In our opinion, complying with data protection regulations represents an opportunity to improve customer trust as well as data value through an effective personal data governance system,” says Florence. TNP’s expertise in legal, information security, and technology solutions, in addition to their business knowledge has helped them address every issue arising out of the GDPR obligations and reaching the next level of compliance—data governance.
Utilizing its team’s in-depth knowledge of personal data protection and privacy, TNP renders end-to-end GDPR compliance services, a unique offer on the market, that empower data protection officers (DPOs) but also chief data officers (CDO), support internal and external compliance audits, offer privacy by design, data protection impact assessment (DPIA) and data governance services among other organisational and governance aspects.
Catering to clients across health, luxury, hotels, financial services, media, and public service sectors, TNP takes a multi-sectoral approach while carrying out projects on an international scale across Europe, USA and North Africa. It offers tailor-made solutions to international groups and organisations listed in France CAC 40 index including small, medium and start-up companies. TNP provided DPO assistance to one of the leading insurance company listed in France CAC 40 index. Being satisfied with the service and specially their GDPR expertise, the client requested six other TNP consultants to join their company for different streams such as direct support with other DPOs, updating and negotiating contracts, DPIAs and processors’ audit cycle and audits.
Our goal is straightforward—to make the protection of personal data a competitive advantage and trust factor for the clients, whether they are in a B2B or a B2C activity
TNP takes a diagnostic approach in assessing the needs of its clients and performs GDPR compliance gap analysis. “From the start, we think it is critical to have a strong internal sponsorship and to raise awareness among employees internally but also among management,” says Florence. Following the gap analysis, an operational action plan is prepared to evaluate the measures and the necessary evolution of the IT systems to meet the GDPR requirements. During this process, oftentimes TNP also assists clients as an external DPO.
Currently, TNP is working on consulting services to embed data protection by design in IoT, blockchain and AI projects. The company intends to provide more and more privacy and security certifications of products and IT services as Florence is an EuroPriSe expert. TNP also proposes new certified training sessions for DPO including training on software solutions of GDPR governance, data mapping and data governance. With the opening of its new office in Morocco, TNP is all set to expand its business in North Africa.