Non classé

The new version of Provacy is now available.
As always, these developments are partly the result of your feedback and improvement requests. We thank all users who actively contribute, through their suggestions, to the ongoing development of the platform.

A new approach to risk and compliance management

Automatically calculated from the information entered in your forms, particularly the data table and assessments, these indicators are supported by a summary table designed to identify risk factors and prioritise actions.

To learn more, see the practical guide.

Two new indicators on the dashboard

This enhancement relies on assessments, which are not systematically completed across all instances. It is therefore available by default on new instances and can be enabled on request by contacting Support.

En savoir plus : niveau de conformité

Simplified DPIA assessment

The DPIA tab in Processing forms has been simplified to align with the three-step decision tree established by the CNIL.

The assessment now follows a clearer and more progressive approach:

1. Check whether the processing activity appears on the list of processing activities exempt from a DPIA;
2. Check whether it appears on the list of processing activities subject to a DPIA;
3. Check whether the processing activity meets at least two risk criteria requiring a DPIA.

This enhancement is intended to make the assessment clearer and easier to apply in practice.

To learn more: DPIA assessment.

Data subject rights management: dedicated field

The Legal basis tab now includes a new Applicable rights field.

It allows you to specify directly which rights apply to each processing activity: access, rectification, erasure, restriction, portability, objection or human intervention.

To make data entry easier, certain rights that are generally applicable are pre-selected by default, while a contextual check helps you verify consistency between the selected legal basis and the associated rights.

This field is added automatically during the update and can be removed on request by contacting Support.

A more accessible practical guide

The practical guide is now accessible directly from the main menu.

Data table: indication of optional data

The data table has also been enhanced with the ability to indicate whether data is optional when collected.

This information makes it possible to document the conditions under which personal data is collected more precisely.

Learn more: details of data categories

Other improvements

This version also includes several additional improvements:

• global deletion of attachments uploaded to an attachment field;
• automatic association of the country's level of protection with the entity.

Stay tuned…

A new generation of security measures management is on the way. You are not ready!
More structured, more comprehensive and designed to go beyond GDPR, towards a truly security governance approach aligned with frameworks such as ISO 27001.

Enjoy discovering this new version of Provacy.

This version introduces two major improvements to the design of data tables and to the automatic translation mechanisms.

Data table: a more intuitive construction

The table keeps exactly the same layout in edit mode and view mode.
Immediate readability and a much more intuitive handling

The action buttons are grouped at the top of the table.
More logical positioning, improved readability

Adjustments by data category are simplified: a single click directly in the cell is sufficient.
Quick and intuitive changes.

The data category catalog adopts a two-column layout.
More compact list, faster reading, more comfortable selection

Check out the interactive guide for more details or see this evolution in pictures in a short video.

Automatic translations: a completely redesigned operation

Until now, forms were automatically translated as soon as they were first created, but translations were no longer updated when changes were made and had to be relaunched manually, while all languages were displayed from the draft stage.

With the new system:

The selected interface language determines the language used to complete the form.
The input language is clearly identified

As long as the form remains in draft status, the user enters data in only one language. One form = one language until it is finalized.
No unnecessary overload, translations are no longer a burden at this stage

Automatic translation is triggered only when the form is validated or published.
Forms published in the register are complete in all available languages

Manual adjustments are still possible, but only on translations.
The input language is now identified and fixed, an advantage for audits

We wish all our clients and partners a very happy 2026, under the sign of controlled compliance and useful innovation.

The year 2025 clearly marked a turning point for Provacy, with a strong focus on artificial intelligence and its regulatory challenges.

Among our key achievements:

• the launch of our AI assistant Zeus,
• a complete AI Act module,
• and the data transfer mapping.

2026 will start strong with the deployment of a new version that deeply simplifies the data table ergonomics. The goal: to present controls exactly as they will appear in the final output. What you see is what you get!

Version 5.6.0 will also make multilingual record keeping much easier, by allowing work in a single input language and postponing automatic translation to the final validation steps of the workflow.

Looking ahead, we aim to evolve Provacy into a unified compliance platform, capable of addressing, in the long run, a wide range of standards and regulations: ISO 27001, cybersecurity, NIS2, DORA, CRA, ISO 50001, ISO 27701, and more.

This new cycle will begin with the progressive implementation of ISO 27001, involving in particular a more structured and detailed description of your assets.
👉 If you would like to contribute to this multi-standards compliance initiative (feedback, use cases, business needs), feel free to get in touch with us.

Our ambition remains unchanged: to simplify complex requirements without ever sacrificing rigor, and to support our users over the long term in an increasingly dense regulatory environment.

As always, we remain attentive to your feedback and your needs to keep improving Provacy in the right direction.

A few more new features in this intermediate version:

🕒 Workload tracking in the Activities menu. Record the time spent by each contributor on every compliance action to:

• Document your compliance efforts in your annual reports
• Show the distribution of workloads across departments, entities, contributors, or types of activities
  • Ideal for shared DPOs, who can track their activity by entity and by department

📅 Dynamic monthly activity report. It allows you to:

• Filter data by data controller, unit, department, year, or type...
• View the number of activities and workloads distributed by month, by type of activity, or by department
• Easily export the results to feed your annual reviews or internal reports.

⚙️ Activation

These features are optional and can be activated upon request by contacting the Provacy Support team.

🔗 Automatic QR code generation from a processing form

• Generate a unique QR code that automatically redirects to the version published in the official register. The link updates automatically if a new version of the published form is released.
• Integrate it into your information materials (posters, forms, privacy policies, etc.) to inform data subjects in a simple, direct, and transparent way.

🔐 SSO instances: direct access from email notifications

• For instances with SSO enabled, the links in email notifications now open the relevant processing form directly, bypassing the login screen — saving time and providing a smoother user experience.

🟢 Availability

These features will be deployed on all instances.

💬 Keep sharing your ideas to help us improve the platform!

At Provacy, we’ve chosen to stay focused on our core expertise: managing GDPR compliance. When it comes to training, we prefer to rely on true specialists.

That’s why we’ve partnered with Awaretrain, a recognized expert in GDPR, data protection, and security.

Prevent data breaches and strengthen your organization’s compliance with short, clear, and engaging modules.

👉 In less than 20 minutes, through short videos, your teams will grasp the essentials of GDPR and learn how to avoid human errors—the number one cause of data breaches.

✅ Real-life scenarios, interactive videos, and fun quizzes
✅ Suitable for all roles and levels
✅ Available in 9 languages
✅ Automatic certificate generation

🎯 Try the Awaretrain GDPR & Privacy Pack free for 28 days and start reducing data risks today!

🔗 Request your free trial 🔗or book a demo

By contacting them on our behalf, you’ll also benefit from preferential pricing.

AI systems

A new menu to support your organizations in achieving compliance with the AI Act and the assessment of your AI projects.

With this module, you can:

• Map your AI systems and link them to your processing activities.
• Identify your AI Act obligations in just a few clicks with an intelligent questionnaire.
• Verify, document, and measure the fulfillment of your obligations with a compliance score.
• Assess your systems against the 7 criteria of trustworthy AI and generate appropriate recommendations.
• Edit a complete report for your teams and stakeholders.

By default, this module is reserved for the DPO team. However, all users have access to a simplified assessment (without creating a form), available from the Compliance menu.

👉 A practical module, connected to your GDPR approach, to manage your AI systems with peace of mind.

ℹ️ For a more detailed presentation, links to the practical guide are available directly in the application (from the list of AI systems or the form).

Feel free to share your feedback with us!

The Provacy Team

Zeus, our new AI assistant

Available as an option, Zeus supports your compliance work using the best models on the market (GPT-4.1, Gemini, Mistral, etc.).
It can:

• generate processing records,
• analyze or compare records,
• suggest improvements,
• create action plans.
  Use your own API key or one provided by Provacy.

You can find a full article below or a detailed presentation by following this link..

Contact Support for a demo!

Unified filter for the dashboard

View all key indicators by entity, department, and now also by record creation year— perfect for annual reviews or perimeter-based reporting.

All monitoring tools have been improved (sidebar, processing map, etc.)
👉 Full overview here: https://tuto.provacy.com/en/governance/

Smarter list display

Multi-page lists now adjust to content height, just like paginated ones.
A smoother and more intuitive experience.

New footer button for all lists:

Coming soon

A module dedicated to the AI Act to help you assess your obligations for AI models and systems.
Coming soon to Provacy.

Hello, I’m Zeus the chameleon, your GDPR assistant.

Chatting with me? It couldn’t be easier.

Pink on a black background — who thought of that?!

Here, they call me:

" Zeus, give me the security measures and data categories to use

for a GDPR-compliant processing of fleet vehicle geolocation. "

Snap! The target’s in sight... I flick out my tongue — precise and lightning-fast — and voilà, here are the elements you need to ensure GDPR compliance!

But don’t worry, I stay neatly under your control. After all, I may be called Zeus, but I’m just a little pink chameleon. Make sure my answers are right, and drag the correct categories and measures into your processing record.

I’m here to help you

People often say to me, "Zeus, that’s a bit arrogant."
Okay, I admit it’s not an easy name to carry every day. To live up to it, I had to learn a few tricks:

• Draft processing records, contracts, and more — in a flash.Example: Write a GDPR-compliant processing record for employee management
• Pierce through the camouflage of laws and regulations to get the full picture on data protection.Example: What are the obligations of a data controller under the GDPR?
• Offer you a 360° vision to analyze, compare, and search the Provacy database.Example 1: Analyze the video surveillance processingExample 2: Compare with the previous versionExample 3: Search Provacy for records about vaccination

with your compliance

But my most remarkable gift, the one that makes my creators proud, is assisted creation of pre-filled records.
We chat a bit and... tadaaaa :

• Title
• Purpose details
• Legal bases
• Data subjects
• Data categories
• Recipients
• Sourrces
• Retention periods
• Security Measures

I chew the work for you… or rather, with you!

In full transparency

My ecosystem — by nature, I blend in.

I’m compatible with all AI models that have an OpenAI-style completion API. Nothing hidden here, I never send any confidential data to the AI model I’m connected to. If you’re interested, just contact support to add me to your instance…

See you soon on Provacy!

Interactive Transfer Maps

To take data flow management even further, Provacy introduces an interactive map that allows you to visualize data exchanges with your third parties.

Extension of flow management to tools

For a full presentation, visit the tutorial site..

Closing tabs

Right-clicking on a tab now closes all tabs

Don't hesitate to contact Support if you have any questions!

On the technical side, we took advantage of the Version 5.3 workshop to tighten a few bolts and boost performance. The result? A smoother, faster application with an even better user experience.

A complete overhaul of our algorithms marks a real turning point, especially for those of you managing XXL Registers! More than ever, our solution proves it is built to handle large volumes of data and tackle even the most demanding challenges.

We can't wait to see you take the wheel of this new Provacy, your compliance accelerator! ! 🏎️💨

Developments in data transfers

Following the publication of the Practical Guide on Transfer Impact Assessments (TIA) recently released by the CNIL, Provacy is evolving to offer a detailed and accurate mapping of data transfers within your organization. A presentation is available from the Transfers tab.

Other developments

Based on your feedback, here are the latest improvements to make your day-to-day management easier:

Any other needs or suggestions? Send us your feedback so we can continue to improve Provacy!

Discover the latest developments in this intermediate version: alerts on data transfers, review of tools and third parties, addition of security measures to data breaches, and display of the identifier in forms.

Alert messages on data transfer

From the Processing forms or Contract , the summary of third parties (processors, partners, organizations, etc.) displays their country of establishment from the Processing forms.

The list of these countries is now visible under the Transfers field label.

Alert messages highlight inconsistencies in responses to potential transfers.. Indeed, third parties are not necessarily importers or recipients of the data; they can also be exporters or the originators of the data.

You can verify the consistency of your responses by displaying the column. on the list:

Evaluation of tools and third parties

Associate an evaluation and an action plan with your tools or third party It is possible to fill in these fields from the list by pressing CTRL + Click on the box.

The Evaluation field is also accessible on the form, at the top of the Description tab. The evaluation criteria are "Non-compliant", "Improvable", "Acceptable" or "Good practice"

You can create and associate activities to third parties or tools from the Links tab.

The evaluations are displayed in the summaries of third parties or tools in the Processing forms or Contract

Addition of the Security Measures component to the Data Breach form

Associate the security measures implemented following a data breach:

Display of the identifier in the form

It is sometimes easier to communicate or remember the identifier of a form. This is why this information is highlighted in the form header, in alignment with the colors of the various menus.

These developments are the result of expressing your needs. We thank you for contributing to the improvement of Provacy!

We are delighted to introduce the latest version of Provacy 5.2.0. This update brings significant enhancements, including the addition of the Impact Assessment module and several new features designed to improve your user experience.

The Impact Assessment module (DPIA)

This new module stays true to our philosophy: simplicity and intuitiveness. To assist you, a guide is directly accessible from the application, allowing you to quickly familiarize yourself with its main features.

Improved management of security measures

For delegates, it could be challenging to determine which security measure to choose from the available options. Now, a help button provides a full description of each measure. These descriptions are based on official resources from the CNIL’s PIA tool.

Harmonization of data category colors

With the introduction of the DPIA module, the colors associated with data sensitivity have been revised to offer more consistency. We can always revert to the previous colors upon request if this change does not align with your preferences.
De plus, vous noterez que le tableau des données occupe désormais toute la largeur de la page, optimisant l’espace disponible pour une meilleure lisibilité.

Tabs bar always visible

In the forms, the tabs bar remains accessible as you scroll down the page. This enhancement makes navigation easier, helping you stay oriented and quickly access other tabs.

Simplified display of HTML fields

To improve the readability of forms in edit mode, the toolbar for HTML fields only appears when these fields are activated.

Sharing of tags

By default, tags are only visible to the user who created them. A new setting now allows tags to be made visible to all users for collaborative use. If you would like to activate this feature, please contact support.

Your feedback is essential. Feel free to share your comments and suggestions with us.

We wish all our customers and partners a happy and successful 2025!

In terms of results, the past year has been dedicated to adding new features such as filing of rights applications, online processing declaration (Tchatch), generation of contract clauses and legal information. And, as promised, the new version currently being rolled out includes the Impact Analysis module.

Beyond our own little navels, 2024 has recently seen the adoption of a newcomer to the world of regulation. The European AI Act represents a significant development in the regulatory framework for digital technologies.

This text complements the GPRD by providing a framework for the use of AI technologies and data, in particular personal data. It aims to protect fundamental rights by imposing strict obligations on AI producers and users.

For the coming year, we are therefore determined to equip Provacy with a comprehensive module to manage all aspects of this European law. Work has already begun. We would like to thank the DPO of Eiffage and our partner SRC Solution for their contribution to this new project.

Of course, we remain at your disposal for any other functions you may require.

Once again, our best wishes for a happy new year!

We hope you are enjoying your summer holidays and soaking up the sun! Upon your return, you'll be pleased to discover the latest version of Provacy, enriched with new features.

With this version, edit the standard contractual clauses from a processing or contract cards according to the models proposed by the European Commission (Standard contractual clauses between controllers and processors and Standard contractual clauses for the transfer of personal data to third countries pursuant to Regulation).

Copy the measures from one object to others. Processing or contract cards using these objects will be automatically updated (function reserved for administrators).

Do you use the exchange areas at the bottom of the form pages? Now, the addition of a comment can be notified by email to the DPO team:

Is your register important and its display is slow? Choose to display the summary only, with links on the files:

Creation of the Tool expert role which allows the user to modify only the tools associated with them. Request its activation from Support.

A new shortcut on the list of Data Controllers:

Do not hesitate to give us your feedback.

Keeping up the pace! This version lays the groundwork for the automatic editing of contractual clauses between controllers and subcontractors.

What's New

Association of Third Parties from the Data Table : No more switching between different tabs to manage your third parties (subcontractors, partners, etc.). You can now associate them directly from the data table. Your existing data is automatically imported into the new field, providing a seamless experience.

Addition of the Data Table Component for Subcontracting Contracts : With this update, you can now manage data related to subcontracting contracts in the same way as for processing activities. The data is also carried over from your existing records, making this update seamless for users.

User Information Mechanism : Documentation for these updates will be presented to users within the relevant tabs.

Improved Navigation : For your visual comfort, we have enhanced the toolbar and the visibility of navigation tabs in forms. At a glance, you can now access essential features more easily.

Improved Response Times : We have optimized performance to reduce response times when opening and closing records, especially for large instances.

Feel free to share your feedback with us!

On vous appelle le 18 juin à vous rendre tous au Parc des Princes. Provacy sera bien là au rendez-vous du Printemps des DPO. Crampons exigés.

Spring is already here, bringing in a fresh season and a new update! We've revamped security breach notifications, polished up security measures, and added some flair with sleek user profile landing pages. There's a subtle reorganization of the list toolbar, convenient new menus for swift data access, and a bunch of other little tweaks to make the app smoother and more enjoyable.

And at the heart of this new version, there's a small revolution that rethinks how Provacy is used. A contact interface designed for easy communication with the outside world. An email address is all you need for:

Subscribe now to enjoy it!

Enhancement of the Data Breaches Form

In response to several requests, the form has been enriched to align with the data protection authority's reporting requirements.

 Security Measures, two modifications:

• The recommendation of measures is activated on all instances.
• The color of the measures in the catalog lightens when they are selected.

A simpler and more practical homepage for delegates and a streamlined interface.

Business delegates can create new records from the homepage. By default, all delegates will see this new page. Alternatively, you can choose to keep the dashboard as the homepage for delegates. Request your setup from Support.

Reorganization of the command ribbon on lists.

Main menus on black background and shortcuts on the Administration menu

Shortcuts for Entities, Units, Users, Third Parties, and Software & Tools.

Thank you for your valuable contributions, and keep pushing us forward with all your great ideas!

Bonjour, 

Nous vous souhaitons une belle année 2024 et nos meilleurs vœux de réussite dans tous vos projets. 

A l'heure des bonnes résolutions, nous prévoyons d'étoffer l'application Provacy pour vous fournir de nouveaux services que vous êtes nombreux à attendre. Au menu cette année :

• ​​​​​la réalisation d'Analyses d'Impact,
• la génération des clauses de sous-traitance (Article 28),
• une interface facilitant les dépôts et réponses aux demandes de droits (Article 12),
• une section Audit dédiée à nos partenaires.

Nous sommes ouverts à toutes vos suggestions pour préciser et compléter cette liste. Désireux de connaître votre avis afin de garantir que l'outil réponde au mieux à vos attentes, nous vous proposons de rejoindre un « Club Utilisateur ». Dans le cadre de ces projets de développements, nous vous convierons à des ateliers visio de discussion. Pour participer, faites nous part dès maintenant des sujets qui vous intéressent.

En route pour de nouvelles aventures et encore une excellente année  !

Lionnel Cauvy & Marie Joubert

Chers clients, chers partenaires,

Cette année mouvementée s'achève et vient l'heure du premier bilan.

• La continuité de l'activité est maintenant bien assurée au sein de la nouvelle structure Provacy SAS. Nous sommes heureux de poursuivre l'aventure avec vous !
• Vous bénéficiez déjà, pour la plupart d'ente vous, de la dernière version 5 pour laquelle nous recevons des retours très positifs.
• Nous facilitons le travail collaboratif pour les utilisateurs Européens avec l'ajout de trois nouvelles langues (le portugais, l'allemand et le néerlandais) et la simplification de la fonctionnalité multilingue (pour en savoir plus, consultez cette page).
• Vous pouvez maintenant consulter l'aide depuis notre nouveau guide pratique, destiné à s'étoffer au fil du temps, et dès maintenant accessible en ligne : https://tuto.provacy.com/.

Tout cela a été possible grâce à votre patience, votre soutien et vos contributions.

En guise de remerciement, nous avons le plaisir de vous offrir deux nouvelles fonctionnalités. Parce qu'en matière de traitement de données la transparence renforce la confiance des parties prenantes, vous trouverez au pied du sapin ces nouveaux outils de communication :

• l'édition automatisée de vos mentions d'information - 7 modèles proposés par la CNIL, à adapter à votre convenance,
• un registre public, à destination de certaines catégories de personnes, à insérer dans vos sites internet ou intranet, ou pour compléter votre charte de protection des données.

La nouvelle version sera livrée à partir de ce soir 17h sur les instances déjà en version 5. Pour une présentation complète, consultez cette page.

Nous avons encore beaucoup à faire pour nous faire connaître et nous développer. N'hésitez donc pas à parler de nous !

Bonnes fêtes de fin d'année à tous !