Privacy Kit


  • Comprehensive Solutions for Start-Ups and smaller Companies
  • EU GDPR Compliance Software
  • External Data Protection Officer
  • Online Trainings & Webinars

Request offer Book an appointment

Our Privacy Solutions

1 Year Term

Fully flexible subscription

49 €/month

  • Appointment of Data Protection Officer
  • GDPR Software Solution
  • Training Webinars
  • 4 eLearning Modules
Request offer

3 Year Term

Cost-effective Data Protection

32.50 €/month

  • Appointment of Data Protection Officer
  • GDPR Software
  • Training Webinars
  • 4 eLearning Modules
Request offer

Privacy-Kit - An Overview

Privacy-Kit - These are your advantages at IITR

We offer you an optimal automated software service for the implementation of the EU General Data Protection Regulation:

  • Free webinars every 6-8 weeks
  • Expert individual consulting
  • Ongoing legal updates
  • Discount for recommendations

What does the Privacy-Kit contain?

  • Access to our EU GDPR Software Solution
  • Numerous GDPR Templates
  • Version-controlled Document Management System
  • Appointment of an external Data Protection Officer
  • Folder with all Documents and Templates
  • Individual eLearning Trainings for your Employees
  • Additional free Webinars every 6-8 weeks
  • Newsletter with current changes in Data Protection
  • GDPR Certification Logos for your website

EU GDPR Software? Just test it!

Request a free demo video:

Video-Vorstellung kostenloser Test DSGVO Software

Warning! JavaScript must be enabled for this form to work properly.


Privacy-Kit - These are your advantages at IITR

We offer you an optimal service for the implementation of the EU General Data Protection Regulation:

video thumb dsgvo mittelstand
  • Free Webinars every 6-8 weeks
  • Available in German and English
  • Regular Software Updates including the latest developments in Data Privacy Law
  • Competent contact persons
  • Referral Discount

Our Privacy-Kit - This is how it is structured:

compliance kit features pic

Certification status

See if your company has satisfied all necessary requirements for certification. The audit is performed by the independent IITR Cert GmbH.

Version control

Changes to your documents are saved in accordance with the statutory requirement by means of version control so that they can trace any changes.


Access to data protection training for your employees. Employee training is a meaningful requirement under the EU GDPR.

compliance kit features elearing

The Privacy Declaration

The law requires small companies to create a data protection statement, which describes how your company handles personal data

Documentation Management Overview

Maintain an overview of the current processing status of all documents required under EU GDPR, e.g., data processing agreements or records of processing.

Data Protection Webinars

Unlimited access to the assigned data protection webinars and eLearning modules.

Easy to use

The Privacy-Kit provides you with all necessary documents as templates. Any documents that your company already has can be added.



Choice of language

Contents are available in English and German.

All-inclusive Privacy Guide

datenschutz kit ordner

Privacy-Kit - These topics are covered

We cover these topics of the EU GDPR with our Privacy-Kit:

  • Data Protection Statement for your Company
  • Records of processing activities
  • Processor Agreements
  • IT Security
  • Rights of data subjects
  • Website Privacy Policy
  • Privacy Impact Assessment
  • Data Breach Reporting
  • Awareness Trainings for employees
  • Annual Privacy Review


Webinar series on Data Protection - stay up to date

As a user of the Data Privacy-Kit, you receive free access to our webinars that are held every six to eight weeks. These online data protection seminars are live events that take place at scheduled times. Feel free to take advantage of these webinars to pose questions to our speakers. All webinars are subsequently available as on-demand videos in the Data Privacy-Kit. The videos all have time stamps with keywords so you can easily rewatch specific sections.

On the one hand, the webinars elaborate on the functions of the Data Privacy-Kit in more depth – with a focus on the fundamental aspects that must be taken into account to ensure GDPR compliance. On the other hand, the online seminars address a wide range of special topics on data protection (e.g., home office, website tracking, fines, and much more).

This additional offering is intended for all users of the Data Privacy-Kit. It offers sound support and the opportunity to further enhance your existing knowledge.

Webinar content on Data Protection

Webinars on the following data protection topics are available in our webinar database:

Instructional webinars

Reporting Data Breaches

The webinar explains the conditions under which a violation of the protection of personal data must be reported to the data protection supervisory authority and, if applicable, to the data subject.

IT Security and Data Protection

The webinar elaborates on which minimum IT standards should be met under the EU General Data Protection Regulation.

Data Protection Impact Assessment

The webinar discusses the requirements that need to be taken into account when conducting detailed testing of new processing systems that entail special risks for data subjects.

Handling Requests for Information

The webinar explains the proper procedure to follow when data subjects assert their rights (information, correction, deletion, restriction and data portability). We do this using the templates in the Data Privacy-Kit.

Information Security Checklist

Using the Bavarian Data Protection Authority’s checklist for “good practices when implementing technical and organizational measures,” we examine in detail the recommendations regarding the minimum standards for IT systems. We discuss the IT requirements that companies – from the Data Protection Authority’s perspective – should comply with.

Website Data Protection Statement and Information for Data Subjects

The webinar explains what information needs to be included in your website data protection statement.

Record of Processing Activities

The webinar explains how to document your processing activities pursuant to the EU General Data Protection Regulation.

Outsourced Data Processing – in practice

The webinar addresses the issue of hiring third-party providers (i.e., lettershops, external hosting, call centers) to process personal data (“outsourced data processing”).

Review your own Data Protection status

The video explains how to monitor your own data protection status or have it reviewed by us and also discusses which IT security measures you should particularly observe.

Special Topics on Data Protection

Home office and Data Protection

The webinar discusses the data protection requirements for home offices (in particular, from the standpoint of IT security).

Update on fines issued by the supervisory authorities

The webinar examines the factors taken into account by the data protection supervisory authorities when determining fines and looks at the fines currently in place (in particular, for web tracking, data subject rights, and IT security).

Video Surveillance

The webinar discusses the requirements to heed when introducing video surveillance systems.

The audit practice of the Data Protection supervisory authorities

The webinar focuses on “the audit practice of the data protection supervisory authorities.”

Information Security Management

It is of central importance for companies of all sizes to position themselves professionally in the area of information security. In the webinar, our colleague, Mr. Ralf Zlamal, presents various ways to do this and provides tools to help you accomplish this on a daily basis.

Using contact data for advertising purposes

The webinar explains how to handle contact data in a GDPR-compliant manner and provides guidelines on using data for advertising purposes (also with regard to cold calling).

Video conference tools

The webinar explains how to use video conference tools in a GDPR-compliant manner (such as Microsoft Teams, Zoom, Webex, Skype, GoToMeeting, etc.).

Website tracking: An update following the decision of the German Federal Court of Justice regarding cookies

The video discusses how to use website tracking tools in a GDPR-compliant manner following the decision of the German Federal Court of Justice (decision of May 28, 2020). In particular, the following tools are addressed: Google Analytics, eTracker, Matomo/Piwik, Google Fonts, Google Maps, Google AdWords Conversion Tracking.

Privacy Shield: European Court of Justice

In this Webinar we discuss the decision of the European Court of Justice on the validity of "Privacy Shield". We provide specific recommendations on what to do in practice to implement the decision in practice (especially when using web based services of US providers).

What Templates does the Data Protection Tool contain for the Record of Processing Activities?

In our EU GDPR software you will find prefilled templates which you can adapt for your company with just a few clicks. Templates are available for the following areas in particular:

Templates: prefilled documents for the description of your records of processing activities!

Templates for the following areas are available and can usually be used with minimal adjustments:

- New User accounts for IT systems
- Procurement and purchasing
- Candidate management
- Service provider support
- Document Management / Archiving

- Electronic payments
- E-mail usage
- Internet usage
- Customer support
- Personnel file
- Travel expense accounting

- Video surveillance
- Website contact form
- Website tracking
- Time/attendance recording

This is how the IITR ordering process works

  1. You order a Privacy-Kit from us.
  2. We will send you your contract by e-mail, which you sign and return to us. You will then receive the invoice from us.
  3. After receipt of payment, we will create your account for the EU GDPR software and send you the folder (including countersigned contract, certificate and advertising sticker). You will receive the login data by e-mail from us.
  4. Now you can edit the stored templates and sample texts on the various data protection topics in the data privacy- tool. You will find a video introduction to the operation after logging in or under this link.

1. Company size

Number of screen workstations:

2. Choose term

Desired term:

3. Your details


Contact person:

After sending this form, we will create a contract offer and send it to you by e-mail. After you have signed and returned it to us, we will send you the invoice. After receipt of payment, we create your access to the online platform and send the folder incl. certificate and accompanying documents. * required entry

2. Your details

Contact person:

3. Your individual offer


FAQs Privacy Kit

We will inform you about all relevant changes in data protection in our newsletter. We also offer our clients regular webinars on current data protection topics at no additional cost. You can view these again later in the Privacy Kit.

Benefit from the advantages of an external data protection officer:

• No limitation of liability as with the "internal" data protection officer
• No additional insurance required
• No initial training necessary
• No costs for ongoing training
• Regular terminability in contrast to the internal data protection officer
• Cost and effort optimization especially for small and medium-sized companies

With our data Privacy Kit with a one-year contract period, the contract is automatically extended by one year each time if the contract is not terminated in due time.

The Privacy Kit itself does not contain a consulting quota. If you are interested, our data protection experts will be happy to advise you on your request by e-mail or telephone for an additional charge. The costs are 180 Euro per hour plus VAT.

Yes, the Privacy Kit includes the appointment of an external data protection officer for your company at no extra charge.

Customers of the Privacy Kit are welcome to display it on the website or on flyers. In this way you can show your customers that you take data protection seriously and implement the EU GDPR. We will provide you with an appropriate logo for this purpose.

You have to appoint an internal or external data protection officer if twenty or more employees in your company are entrusted with electronic data processing (e.g. if more than twenty employees work on a PC). You may also be obliged to appoint a DPO if your company is subject to a special case under Article 37 of the EU General Data Protection Regulation.

If you successfully recommend the Privacy Kit as a customer, you will receive a one-time discount of 95 Euro (plus VAT) per recommendation on your next invoice. Please use the field "Referral" in the order form for a correct assignment.

Get advice now

Call-back service


Arrange a consultation