Skip to content
Contact us
  • There are no suggestions because the search field is empty.

Where should I start in Cerivo?

Choose the right starting point based on what you want to achieve.

Cerivo supports different ways of working, depending on your goals.

You don’t need to do everything at once. Start with what matters most to you, and build from there.

If you want to manage your Records of Processing Activities (RoPA)

Start here if your focus is documenting how personal data is processed.

Processing Activities
Create and maintain your RoPA using a guided questionnaire that ensures you capture the required information.

Systems
Document where personal data is stored and connect systems to your Processing Activities.

Vendors
Register your data processors, track third-country transfers, and document your legal basis.

 

If you’re working with standards (ISO 27001, ISAE 3000, SOC 2, etc.)

Start here if your focus is building and maintaining compliance with a framework.

Governance
Track your implementation, manage documentation, and maintain a clear overview of your progress.

Tasks
Set up your control cycles, reviews, and ongoing activities so work happens consistently.

Systems & Vendors
Document your systems and vendors, and manage recurring tasks tied to them.

 

If you want to manage vendors and data processors

Start here if your focus is vendor oversight and accountability.

Vendors
Keep a clear record of your vendors and data processors, including agreements, transfers, and audits.

Tasks
Build recurring workflows for reviewing agreements, auditing vendors, and maintaining oversight.

This creates a reliable record of your ongoing compliance work.

TIA (if enabled)
Document Transfer Impact Assessments for third-country transfers.

 

If you want to collaborate across your organization

Start here if your goal is to share responsibility and scale your work.

Tasks
Assign work across teams, set deadlines, and keep progress visible.

Responsibilities across the platform
In Cerivo, you can assign ownership to systems, vendors, and Processing Activities.

If you’re not ready to give access yet, you can assign users with “No access”.

 

If you want to document Transfer Impact Assessments (TIA)

TIA (if enabled)
Follow a guided questionnaire to complete each assessment step by step.

Vendors
Use your vendor overview to identify which transfers require a TIA first.

 

If you want to document Data Protection Impact Assessments (DPIA)

DPIA (if enabled)
Document your DPIAs using a structured questionnaire that ensures consistency and completeness.

 

If you’re a data processor managing your obligations

Customers
Track customers where you act as a data processor and manage your agreements.

You can also document any conditions beyond your standard terms.

Governance
Manage compliance with relevant standards and frameworks, and keep documentation organized.