European Hospital x Dastra
Victor BISSON, DPO of the European Hospital in Marseille, agreed to talk about the hospital's choice of Dastra to manage its RGPD compliance.
Can you introduce the European Hospital of Marseille?
The European Hospital, administered by the Fondation Infirmerie Protestant de Marseille - Hôpital Ambroise Paré, is a Private Health Establishment of Collective Interest (ESPIC) and, in fact, performs a public hospital service mission.
Located in the heart of Euroméditerranée, the Hôpital Européen responds to the PACA Regional Health Agency's desire to make the healthcare offer more equitable between the north and the south of the Marseille metropolitan area.
What are the issues related to the RGPD in your organization?
The issues related to the RGPD at the European Hospital are to establish exhaustively the processing activities, and moreover, to establish an exploded view of the processing with the help of an application mapping (assets, actors, data sets, measures, data subjects, etc.).
What is your role as DPO?
For the DPO part, I am in charge of managing the European Hospital's compliance with the General Data Protection Regulation (GDPR), i.e. informing and advising the hospital's departments, monitoring compliance and acting as an interface between the hospital and the [CNIL] (https://www.dastra.eu/fr/category/cnil/9).
Why did you choose Dastra?
The European Hospital needed a complete, educational, intuitive, reliable and affordable solution for non-experts to manage its compliance with the RGPD. It was therefore natural that we turned to DASTRA. The exchanges with the DASTRA teams are regular and transparent.
The essential functionalities for the European Hospital are the following:
- Regulatory monitoring and RGPD news available
- A processing register
- A data mapping
- Monitoring of the exercise of rights and register of violations
- Provision of thematic webinars
What benefits do you see from using Dastra?
DASTRA meets the various expectations of the European Hospital. This solution allows us to quickly establish a solid foundation for RGPD compliance, particularly with the help of the "presets" integrated into the solution.