Security & Compliance
Lynx Compliance - GDPR (EU 2016/679)
EU General Data Protection Regulation (Regulation 2016/679) — key articles seeded as a first-class compliance.framework with cross-refs to ISO 27001, ISO 27701, Quebec Law 25, PIPEDA.
lynx_compliance_gdpr
· v19.0.1.0.0
· Premium
What this solves
Lynx Compliance - GDPR (EU 2016/679)
The European General Data Protection Regulation seeded as a first-class framework - chapters, articles, and ~40 substantive controls - cross- referenced with ISO 27001, ISO 27701, Quebec Law 25, and PIPEDA so one piece of evidence proves all four.
Any business serving EU residents is in scope of Regulation 2016/679, and penalties run to four percent of worldwide turnover. Most teams treat GDPR as a Word-document obligation; the auditor wants a control catalog with evidence per article. This module ships that catalog inside the same compliance framework registry as your other regulations, so the privacy officer manages CSF, ISO, Law 25, and GDPR side by side.
Key Features
Seven functions - mapped to GDPR's chapter logic (lawfulness, rights, controller/processor, transfers, supervisory authority, remedies, specific situations).
~40 substantive controls - one per principal article, sufficient for a Type II readiness assessment.
Cross-framework refs - seeded mappings to ISO 27001:2022, ISO 27701, Law 25, and PIPEDA.
Article-level traceability - control IDs follow GDPR article numbering for direct citation in DPA correspondence.
Penalty awareness - control descriptions reference the relevant article 83 tier so risk severity reflects fine exposure.
Integrates With
lynx_compliance - registers as a framework alongside CSF, ISO, SOC 2, Law 25, PIPEDA.
lynx_compliance_privacy - PIA, DSAR, consent, and breach records become evidence on GDPR controls.
Depends on
Try Lynx Compliance - GDPR (EU 2016/679) on your team.
Free trial, no credit card. Talk to sales when you're ready.