Review & Send Response
Siemens AG • Annual GDPR Compliance Assessment
Uploaded Documents (2)
Data Processing Agreement (DPA)
DPA_Siemens_2025.pdf • 1.2 MB
ISO 27001 Certificate
ISO27001_Certificate.pdf • 856 KB
📋 Answered Questions (3)
Do you maintain a Record of Processing Activities (ROPA) as required by Art. 30 GDPR?
Yes, we maintain a comprehensive ROPA that documents all processing activities, their purposes, legal bases, and data flows.
How do you fulfill Data Subject Access Requests (DSARs) within the 30-day timeframe (Art. 12-22 GDPR)?
We have an automated DSAR portal allowing subjects to submit requests. Our internal SLA is 20 days to ensure compliance with the 30-day requirement. Complex requests are escalated to the DPO.
Do you have an appointed Data Protection Officer as required by Art. 37 GDPR?
Yes, we have appointed a certified DPO (CIPP/E, CIPM) who reports directly to the Management Board and is accessible via dpo@company.com.
Email Preview
Siemens AG
Re: Annual GDPR Compliance Assessment
Dear Siemens AG Team,
Please find attached our response to your GDPR compliance inquiry.
We have provided 2 document(s) and answered 3 question(s) as requested.
Please do not hesitate to contact us if you require any additional information.
Best regards,
Compliance Team