GDPR – 2nd Party Audits 


Organizations and businesses must comply with the requirement of the GDPR regulation (Article 28) and the national Law 4624/2019 on the protection of personal data, regarding the signing of a personal data processing agreement between the controller and the processor. The controller has the legal obligation to check the executor in terms of the degree of compliance and satisfaction of his agreed contractual obligations (personal data processing agreement) regarding the implementation of appropriate technical and organizational measures for the processing of personal data. TÜV AUSTRIA HELLAS, through its GDPR 2nd Party Audits service, enables organizations and businesses, which have the role of controller, to audit their partners in order to reduce the risk of fines being imposed on their business, to ensure compliance them against the legislative requirements and to recognize the reliable suppliers in the processing of the personal data of their employees and customers.

Who is it addressed to?

GDPR 2nd Party Audits service concerns and can be delivered to all companies and organizations of the private and public sector that have an obligation to comply in accordance with the requirements of the GDPR regulation and the national Law 4624/2019 on the protection of personal data and specifically the requirement of article 28 for the control of their suppliers who performing the processing of personal data as processors.

Who do I contact for the service delivery?

Information Systems Inspection Division. Responsible: Thanasis Mitsakos, phone number: 30 210 5220920 ext.2045, email:


    Παρακαλούμε συμπληρώστε την παρακάτω φόρμα για να κατεβάσετε το Gamification Primer μας

      Please fill the form bellow to download our Gamification Primer