RODO services for industry and manufacturing

This is how we designed ODO 24 services to meet the most demanding expectations of companies and institutions by tailoring solutions to the individual needs of customers.

banner_image

ODO 24 services – our mission

Our mission is to build safe working environments that ensure full compliance with regulations and cyber resilience. By choosing ODO 24, your organisation gains not only professional support, but also peace of mind that challenging topics are in the best hands.

See our services and what we can help you with

Data security in industry and manufacturing business case

RODO: experience in the industrial sector

The industrial and manufacturing industry relies on extensive supply chains, multi-stakeholder collaboration and data processing of thousands of employees, contractors and operators. In the context of RODO, data management in ERP, MES and HR systems, often combined with legacy solutions, is a particular challenge. It can also be problematic to entrust data to external parties such as security companies, temporary work agencies or service providers without proper documentation and oversight.

ODO 24 has implemented RODO in manufacturing plants and industrial companies with a multi-departmental structure. We carried out compliance audits, standardised entrustment agreements, prepared data protection procedures in automated environments and implemented access matrices for various professional groups from HR departments to maintenance teams. If needed, we also analysed how long to keep documents relating to pyrotechnic materials used in airbags. We also helped prepare organisations for potential incidents or inspections, increasing their operational resilience and compliance in practice, not just on paper. In one entity, we regulated the policies of the manual workers our client 'received' from a temporary agency. We also reviewed and adjusted the rules for the use of monitoring in production facilities, as well as the control of employees' lockers and backpacks and monitoring in the kitchen/canteen. We also regulated the processing of employee data through devices/pistols that tracked an employee's actions throughout the day (each employee had this equipment with them and clicked' the labels of all the goods they were packing and unloading - so it was clear when they had a break and where they were going). We also regulated video surveillance when one building was occupied by several companies. At one of our clients, we also regulated the processing of entrusted data by the processor for its own purposes, in connection with the need to account for 0% VAT. (The processor was responsible for shipping and had to retain the end customer's data as proof of delivery within the EU area). It is our daily bread to regulate the employment of temporary workers in industry and manufacturing.

We serve or have served, among other things.

GDPR and cybersecurity – challenges for the automotive sector

Manufacturing plants and industrial companies are increasingly relying on integrated IT systems - such as ERP, MES or networked automated production lines. This significantly increases operational efficiency, but at the same time raises serious challenges in terms of data protection and digital security.

For large industrial groups and operators of economically relevant infrastructure, the NIS2 Directive makes it mandatory to implement a comprehensive approach to cyber security. This includes, among other things, access management, data encryption, monitoring of the IT environment and effective incident response.

The RODO, on the other hand, requires the proper safeguarding of personal data of employees, contractors and partners - regardless of the scale of processing. Combining the requirements of both regulations is not only part of legal compliance today, but above all a prerequisite for increasing the operational resilience of the plant and maintaining the continuity of industrial processes in the face of growing digital threats.

We use recognized international standards.
This is how you recognize quality

We use recognized international standards. This is how you recognize quality

CIPM

Implementation of privacy and personal data protection system

ISO/IEC 27001

Information technology - Security techniques - Information security management systems

ISO/IEC 29134

Information technology - Security techniques - Guidelines for data protection impact assessment

ISO/IEC 27001

Privacy information management system

ISO 31000

Risk management - Principles and guidelines

PRINCE2 and SMC™

Project management methodologies

ISO 19011

Guidelines for auditing management systems

ISO/IEC 27005

Information technology - Security techniques - Information security risk management

banner_image

Looking for solutions tailored to branży przemysłowej? Zapraszamy do współpracy!

What our customers say about our services

Marcin Wieczorek

Wojas

foto-lizard-media.jpg

I am very impressed with the high level of substantive expertise of the training staff"

From 13 to 17 March I attended the "Course for Information Security Administrators" organized by ODO 24 sp. z o.o. I am very impressed with the high substantive level of the training staff and the comprehensive program. Working as an ABI requires knowledge not only of legal provisions but also of IT matters, which ODO 24 took into account. Noteworthy is the curriculum, which gradually introduces increasingly advanced nuances of personal data protection, starting from the legal basics and ending with practical aspects of auditing and working with documents within a company. The complete set of materials, editable documents and publications I received will facilitate my daily work as an ABI. I can certainly recommend ODO 24 as a reliable partner offering training services of a high standard.

Magdalena Węglewska

Mazda

foto-mazda.jpg

We can wholeheartedly recommend ODO 24 as a professional and reliable partner"

For many years we have consistently placed great importance on the protection of the personal data of our customers as well as our employees. We took an active part in creating the "Code of Good Practice for the Protection of Personal Data of Customers and Potential Customers,” developed jointly by GIODO and the Polish Automotive Industry Association. Due to the complexity and variability of the rules on personal data protection, as well as Mazda’s dynamic development in Poland and the increasing volume of data we process, we decided to entrust the ABI function to a company specialized in this field. The decision to use the services of ODO 24 was primarily influenced by the experience and competence of the team of experts, the comprehensiveness of the offering and its flexibility in adapting to our organization. After a year of cooperation we can recommend ODO 24 as a professional and reliable partner.

Agnieszka Karłowicz

Spiżarnia

foto-spizarnia.jpg

A practical approach, continuous advisory availability, and positive working relationships"

We have been working with ODO24 for over a year. For us it has been a year of peaceful breathing and a sense of security: at least regarding personal data protection :-) The people at ODO are professionals who explain matters that are incomprehensible to the average person in an understandable way. They understand not only their profession but, which is very important to us, business and its requirements. A practical approach, constant advisory availability, and great relationships — all of this means I can recommend this Company to anyone who wants to work and sleep peacefully.

Tomasz Siwicki

Gefco

foto-gefco.jpg

I recommend the company ODO 24 as a professional partner"

For several years we have been cooperating with ODO 24 in the field of personal data protection. A professional team that efficiently helped us to comply with the requirements of the GDPR. We make use not only of the experts’ knowledge but also of professionally prepared e‑training, thanks to which we were able to train several hundred employees in a very short time. I highly recommend ODO 24 as a professional partner delivering services at the highest level.

Opinion of the participants

Google

Tomasz G.

Google

2 years ago

starstarstarstarstar

I wanted to thank you for the wonderful training I've had at your company, the materials were very well prepared, and the instructor has shown tremendous knowledge and experience.

Google

Aleksandra P.

Google

2 years ago

starstarstarstarstar

Training at a very high level, I highly recommend!!! Training materials very useful in everyday work.

Google

Sławomir M.

Google

2 years ago

starstarstarstarstar

Mrs. Mecenas, it was an honor to be able to take part in this training, and thank you very much for your professional approach and valuable practical guidance.

Google

Wacław T.

Google

3 years ago

starstarstarstarstar

The IOD course organized by ODO24 has met all my expectations, a very practical approach, concrete examples and professional support.

Google

Maria K.

Google

1 year ago

starstarstarstarstar

The training was conducted in a way that was understandable even to those without previous experience in this field.

Google

Piotr N.

Google

10 months ago

starstarstarstarstar

Very good training, a lot of practical examples, a little bit too little time to ask questions, but overall I'm satisfied.

Google

Anna W.

Google

8 months ago

starstarstarstarstar

A professional approach, a great atmosphere during the training, the instructor answered all the questions thoroughly, and I highly recommend ODO24!

Google

Jan K.

Google

1 year ago

starstarstarstarstar

It's the best personal data protection training I've ever had, specific examples from real life, not just a dry theory, I recommend it to anyone who works with GDPR.

Google

Katarzyna J.

Google

6 months ago

starstarstarstarstar

The training meets my expectations. A lot of practical knowledge, good materials. The only drawback is too much group, so less time for individual consultations.

Google

Michał L.

Google

4 months ago

starstarstarstarstar

Excellent training! A very competent conductor with vast experience. Everything explained in a clear and understandable way. The training materials are very useful.

Google

Joanna D.

Google

3 months ago

starstarstarstarstar

I recommend ODO24 training to anyone seeking a sound knowledge of the field of ODO: professional service, excellent organisation and excellent teaching facilities.

Google

Andrzej S.

Google

2 months ago

starstarstarstarstar

Sometimes the pace was a little too fast, but the conductor was happy to return to the topics discussed earlier at the request of the participants.

Industry RODO Icon

RODO in industry and manufacturing questions and answers

How much do RODO services cost for industrial and manufacturing companies?

The cost depends on the size of the facility, the number of locations, IT systems and the degree of process automation. We offer packages tailored to the realities of manufacturing companies – covering audits, documentation, procedures and training. We prepare a quote individually, taking into account the organisational and operational structure.

What RODO issues most commonly occur in manufacturing plants?

The most common are a lack of control over access to data in ERP/MES systems, outdated data processing agreements with subcontractors and temporary employment agencies, and a lack of uniform procedures across different locations. There is also often a problem with an overly broad scope of collected personnel data.

Do we have to appoint a Data Protection Officer (DPO) in a manufacturing company?

Not always, but with a large number of employees, personnel data and cooperation with external entities it is definitely advisable. We offer outsourced DPO services together with implementation and legal support.

Which data are most sensitive in industry and manufacturing?

These are employee data (personnel, health, shift schedules), subcontractors' data, information related to security and monitoring, and client data in the case of contract manufacturing. Data collected by time and attendance and access control systems also pose a risk.

Does RODO cover data collected by employment agencies or security firms?

Yes – data processed by external companies must be properly entrusted and subject to oversight. The absence of data processing agreements and audits of processors is a common problem in this sector.

Will the implementation of RODO affect production operations or technical departments?

No – we operate in a manner that does not conflict with the production rhythm. We can implement procedures in parallel with operations, maintaining full continuity of operations.

Does ODO 24 know the specifics of the industrial and manufacturing sectors?

Yes – we have carried out implementations at plants producing machinery, components, food products, in the automotive sector and many others. We are familiar with the realities of shift work, multi-site operations and collaboration with multiple suppliers.

Can I take advantage of a free initial consultation?

Yes! We offer a free consultation for manufacturing and industrial companies – we will help identify risks, streamline processes and implement compliance with RODO without stopping production.

Our greatest value is the trust of our customers.

How can we help you?

Write or call, we will find a solution

Form decoration

Use the form

The data controller will be ODO 24 sp. z o.o. with its registered office in Warsaw at ul. Kamionkowska 45. Your data will be processed for the purpose of preparing, sending and archiving the cooperation offer. More information can be found in the Privacy Policy

ODA in industry and manufacturing audits and implementation | ODO 24