Iubenda logo
Start generating

Iubenda Internal Privacy Management

The solution to easily document all the data processing activity within your organization

for GDPR
for LGPD

Create your record of processing activity: add processing activities from 1700+ pre-made options, divide them by area, assign processors and members, document legal bases and other GDPR-required records.

Not sure what you need? Getting started guide

Internal Privacy Management illustration

Trusted by over 90,000 clients in 100+ countries

Armani hotel Milano logo
Last Minute logo
MaxMara logo
Huffpost logo
Arduino logo
Opengov logo
Obey logo
Martini logo
Mit logo
Goethe logo
Jobtome logo
Newyorkcode logo
Honda logo
The Spectator logo
Ustwo logo
Siemens logo
Neals Yard Remedies logo

Watch our video overview

The requirements

In order to comply with privacy laws, especially the GDPR, companies need to keep a record of how they store and use the data they collect from users. In particular, they must document in writing:

Provide policy icon

Data retention policy for each processing activity

Security measures icon

Security measures

Legal basis icon

Legal basis for processing

Consent outside EU icon

Data transfer outside of the EU, if any

Profiling cookie icon

The parties that you share the data with, both inside and outside of your organization

Full legal overview

How it works

Define areas icon

1. Define areas

Areas are perimeters within which data processing activities are homogeneous. Examples of areas are your website, mobile app, physical stores, employees, recruiting, manufacturing facility etc.

Add processing activities icon

2. Add processing activities to each area

For each area, you can add processing activities out of a list of 1700+ pre-made ones. For instance, you'll add “Payroll processing” to your “employees” area, or “Google Analytics” to your “website” area.

Customize clauses icon

3. Add details about each processing activities

For each processing activity, add your data retention policy, security measures, legal basis for processing etc.

Features and benefits

  • Easily compile your record of data processing activity
  • Easily make your organization GDPR compliant
  • Add areas to granularly describe your processing activity
  • Seamlessly integrated with all the iubenda compliance solutions
  • Easy to use and comes with 1700+ pre-made processing activities you can add to your areas
  • Manage multiple projects with a single account
  • Describe the details of your data processing activity
  • Define security measures for each data processing activity
  • Define retention policy for each data processing activity
  • Define all the GDPR data processing details
  • Assign members to areas and to processing activities
  • Define roles for each member (Controller, Processor, member of the controller's organization, subject)
  • On the Roadmap
    Create and export reports
  • On the Roadmap
    Automated Data Protection Impact Assessment (DPIA)
  • On the Roadmap
    Generate and manage data processing agreements with processors, employees and members in general
  • On the Roadmap
    Generate and manage internal privacy documentation
Explore all features and benefits

Trusted by over 90,000 clients in 100+ countries

Armani hotel Milano logo
Last Minute logo
MaxMara logo
Huffpost logo
Arduino logo
Opengov logo
Obey logo
Martini logo
Mit logo
Goethe logo
Jobtome logo
Newyorkcode logo
Honda logo
The Spectator logo
Ustwo logo
Siemens logo
Neals Yard Remedies logo
Capterra rating

“If you, like me, are part of a smart team and hate updating your privacy policy every time you add some code to your site, then iubenda is for you. It's ridiculously affordable, and super easy to use.”

FAQ

Is the IPM Tool only for companies trying to comply with the GDPR?

Even though the GDPR is a common reason to put more effort into internal privacy management, our tool is not exclusively made for application under the GDPR. It can also be used for internal privacy management in general, even by companies who do not have any users/customers within the EU.

More on internal privacy management

How does the Internal Privacy Management tool work?

The IPM tool makes the complex task of managing internal privacy a simple and straightforward one. The tool lets you define specific ares of data processing, add processing activities and members involved in the processing to each area and also lets you add all necessary details related to the processing activities. This makes it simple for you to comply with requirements (including but not limited to the GDPR), and track and manage the data you collect, the purposes for collection, all parties involved, company details — including data of employees — and more.

Intro to the Internal Privacy Management Solution

Documentation and Guides

See all Guides

All our products are WCAG Level AAA Compliant

Level AAA conformance, W3C WAI Web Content Accessibility Guidelines 2.1

Part of a 360° compliance solution

A complete set of solutions to make your website or app compliant with the law, across multiple languages and legislations

Privacy policy
For websites/apps

Privacy and Cookie Policy Generator

Create your privacy and cookie policy in minutes.

Customizable from 1700+ clauses, available in 10 languages and automatically updated if the law changes, our generator allows you to create a legal document in minutes and seamlessly integrate it with your website or app.

Explore
Cookie Solution icon
For websites/apps

Privacy Controls and Cookie Solution

Manage consent preferences for the ePrivacy, GDPR, CPRA (CCPA amendment) and LGPD. Integrated with the IAB TCF and CCPA Compliance Framework.

Our solution allows you to display a fully customizable cookie banner/consent banner, collect cookie consent, implement prior blocking, set advertising preferences, and more.

Google Logo

Google CMP Partner

Explore
Terms and Conditions icon
For websites/apps

Terms and Conditions Generator

Create your terms and conditions in minutes.

Customizable from hundreds of combinations, available in 10 languages, powerful and precise — our solution is capable of handling even the most complex, individual scenarios. Optimized for e-commerce, marketplace, SaaS, apps and more.

Explore
Consent Solution icon
For websites/apps
For organizations

Consent Database

Collect GDPR & LGPD consent, document opt-ins and CPRA (CCPA amendment) opt-outs via your web forms.

Our solution smoothly integrates with your consent collection forms, syncs with your legal documents and includes a user-friendly dashboard for reviewing consent records of your activities.

Explore
IPM icon
For websites/apps
For organizations

Internal Privacy Management

Document all the data processing activity within your organization.

To comply with privacy laws, and particularly the GDPR, companies need to record how they store and use the data they collect from their users. Our solution allows you to easily document all the data processing activities within your organization.

Explore
Enterprise.svg icon

Enterprise

Hundreds of enterprises rely on iubenda for their online compliance throughout multiple properties and legislations.

Get in touch

Custom document icon

Looking for custom documents?

Our international network of lawyers can provide you with tailored documents and a full compliance review.

Get in touch

Partner program icon

Become a Certified Partner

iubenda's Partner Program is designed for agencies and web professionals seeking to expand their expertise and assist their clients in making their websites, apps and data processing activities compliant with the law.

More on the partner program →

;