HR-ON helps you make sure that you're in compliance with EU's GDPR laws
GDPR tool

Try our interactive GDPR risk assessment tool

How secure is data in your business? In order to carry out a risk assessment in compliance with GDPR, you must first know how secure data is in your business.

HR-ON has created a tool for GDPR to support risk assessment.
The tool is based on the algorithm and recommendations in ENISA’s publication: Recommendations for a methodology of the assessment of severity of personal data breaches.


// Terms of Use: HR-ON makes this tool available as it is. Use of the tool is at your own risk.
1.70 Low risk risk

How to calculate your data deck

Data Processing Context
Data Processing Context explains the basis for calculating the severity of the data breach. DPC evaluates how critical processed data is and in what context data is handled.

Ease of Identification
EI (Ease of Identification) corrects DPC according to how difficult it is to identify individuals based on the leaked data. The harder it is to identify individuals, the lower the same overall SE index (SE – Severity) will be.

Circumstances of the Breach
CB (Circumstances of the Breach) identifies different circumstances that may be present in connection with leaked data. Therefore CB always increases SE index if one of these is present.


GDPR Case Photo

Breach level index

Breach level index calculator is a tool, developed according to American conditions, which are more advanced than the European ones. The calculator can be used with advantage for your company and gives you another perspective that can be included in the company’s risk assessment.

GDPR Case Photo


Here you will find a number of tools that can be used in your work with the General Data Protection Regulation and Risk Assessment.

GDPR Case Photo

Personal Data Test

The personal data test was developed by an attorney. We have chosen to highlight it, as it actually gives a good overview of the process and the subjects to be aware of in the process.

Useful links

Guide to the General Data Protection Regulation (GDPR)

Here you can find a checklist to help organizations be GDPR-complaint


From CIS Security, you can download a 20-controller schedule that can be implemented into your IT organization. Even if you only implement the first five, you will have statistically increased your company’s security by 75-80%

European Data Protection Supervisor

Here you can read more about the European Data Protection Supervisor and the latest news on GDPR

What does GDPR mean?

GDPR stands for the General Data Protection Regulation.

When did the EU Personal Data Regulation come into force?

The EU Personal Data Regulation, also called GDPR, came into force on 25th May 2018.

What is Sensitive Personal Information?

1. Race or ethnic origin
2. Political, religious or philosophical beliefs
3. Trade union affiliation
4. Genetic or biometric data
5. Health information
6. Sexual orientation

What is the largest possible GDPR fine?

The largest possible GDPR fine is either 4% of the company's turnover or 205 million euros, whichever is greater.

Do all companies need to be GDPR compliant?

Yes. As of 25th May 2018, all companies must be GDPR compliant.

Fill out the information and we will contact you as soon as possible.


    Receive a free demo today and find out how HR-ON can make HR easier for you.

    HR-ON Logo

    About HR-ON

    HR-ON is a suite of cloud-based applications that help make HR-related tasks easier. From small business and local municipalities to large multinational organizations, HR-ON solutions are flexible to fit the needs of your business.

    Børsens Gazelle pris 2018
    Børsen Gazelle pris 2019
    Charter mangfoldighed

    Østre Stationsvej 27, 3   //  DK-5000 Odense C   //  +45 71 99 07 27   //   //  CVR: 34474540