CSR Readiness® Pro Edition


  • How do I begin?
  • I forgot my username
  • I forgot my password
  • I skipped some questions and want to go back to them, how do I do that?
  • I don’t know an answer to a question – can I just skip it?
  • How long will it take to complete this assessment?
  • What is the completion seal?
  • How do I put the completion seal on my web page?


  • Who is CSR?
  • Where is CSR located?


  • What is the CSR Readiness® Pro Edition?
  • How does CSR Readiness® Program work?
  • What does the Certificate of Completion signify?
  • Why do businesses need Readiness Pro Edition?
  • What is personal data?
  • What is the difference between PCI and personal information?
  • What is a breach of personal data?
  • What are some examples of a breach?
  • How can I limit the threat of a data breach?


How do I begin

To begin, simply go to the URL provided during your sign up, to register and create credentials to begin the process.  You will have 24/7 access to your account.

I forgot my username

Your ‘username’ is the email address you registered with when signing up for Readiness.  If you change your original registration email address using My Account in Readiness, this updated email address is your ‘username’.

I forgot my password

To retrieve your password, you will need the email address you entered during registration or the updated email address you associated with your account using My Account in Readiness.  Click on the Forgot Password link on the Log In screen.  Enter in your email address and click the Email Link button.  A reset password link will be sent to that email address.  Click on that link to reset your password.  If you do not receive that email or have any problems resetting your password, please contact support@csrps.com for further assistance.

I skipped some questions and want to go back to them, how do I do that?

To navigate back to questions previously skipped, you can use the ‘Next’ and/or ‘Back’ buttons located at the bottom of your questionnaire.  You can also click on the Show Progress tab and click directly onto the domain of the question you would like to go back to.  Before submitting your questionnaire, you will also be prompted to complete any required questions that have not been answered.

I don’t know an answer to a question – can I just skip it?

You can skip questions and come back to them later.  You will want to ensure all questions are answered prior to submitting your questionnaire, as not answering a question will affect your score, generate suggested remediation tasks and associated policy and procedure offerings.

How long will it take to complete this assessment?

It is estimated that it will take one hour to complete the assessment.  The entire evaluation and remediation process may take longer should consultation or research be required to answer to some of the questions.  Progress within the assessment is saved as questions are answered.  You can leave the assessment and come back to it at a later time to finish.  Your answers up to that point will be saved.

What is the ID Stay Safe seal?

This digital seal is a stamp that you can place on your website, which informs your customers, affiliates, potential clients, corporate insurers, etc., that your organisation has performed a thorough self-assessment of your organisation’s processes to protect personally identifiable information, indicating that you have policies in place to maintain a high level of vigilance, audit, and association education with regards to the protection of personally identifiable information within your organisation.

How do I put the completion seal on my website?

Once the self-assessment has been taken and the recommended remediation tasks have been completed, an email will be sent to the associated account’s registered email address with the certification seal with instructions for its publication and directions to embed it on your web page.  If there are any issues regarding the implementation of the completion seal, please contact support@csrps.com for further assistance.


What is CSR Readiness® Pro Edition?

The Readiness Pro Edition comprises the patent-pending risk assessment program CSR Readiness® and the award winning CSR Breach Reporting Service™.

How does the CSR Readiness® Program work?

CSR Readiness® Program is an online self-assessment tool that helps you review, revise and revisit your business processes for handling the personal data of your customers, employees and vendors as required by a host of legislation and regulations.

CSR Readiness® 3 Step Process:

Detect location of personal data in an organisation.

Determine how personal data is:

  • Acquired
  • Accessed
  • Handled
  • Transmitted
  • Stored
  • Destroyed

Remediate weaknesses and train employees on system-generated policies and procedures

Routinely monitor and audit performance to meet legal, regulatory and other compliance requirements.

A dashboard will show progress and generate tasks to improve compliance.  You can improve your business risk scores by remediation and implementation of further program offerings.  Upon successful completion of the analysis and remediation, your business will earn a Certificate of Completion and the ID Stay Safe Digital Seal that you can use on your website and advertising

What does the Certificate of Completion signify?

Once you have completed in the self-assessment evaluation and implemented the remediation tasks, you will be awarded the Certificate of Completion.  This can be placed on your website and is valid for one year from date of issue.  By annually revisiting your self-assessment, you can maintain this Certificate of Completion.

Why do businesses need this Pro Edition?

Various laws and regulations require businesses to protect the personal data of employees, vendors and customers.  Readiness Pro can assist businesses in meeting these requirements.  Sanctions for infringements of the Icelandic Data Protection Act can include fines and prison.

If organisations don’t have this program, what could happen?

While it’s impossible to completely avoid a breach due to uncontrollable circumstances, 91% could have been prevented.  Accidents, errors and theft are just a few ways that information is compromised. Smart devices and wireless services compound the problem.  Proactive detection and correction can go a long way to prevent loss and further fallout due to reputational damage, lost sales, fines, and civil law claims.

Lost trust means lost sales. The fallout of data breaches has caused businesses to close their doors. According to Visa, businesses should “Consider a breach likely and plan accordingly.”

What is a personal data breach?

The simple answer is that it’s anything that can be used to identify you. The loss of this information leads to identity theft.

The EU General Data Protection Regulation (GDPR) defines personal data as “any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person”.

Types of personal data include: name, address, phone, email, birthdates, and bank account and credit card numbers, etc.  The list continues to grow with new and revised legislation and court rulings.

Other personal data includes health information, medical records, vehicle identification numbers, license plate numbers, login credentials and passwords, education records as well as voice recognition files, fingerprints, retina scans, and handprints.

What is the difference between PCI and personal data?

PCI data (payment card industry data) is just one type of personal data. The PCI Data Security Standard (PCI DSS) protects credit cardholder data such as debit or credit card number, expiration date and card security code.

What is a personal data breach?

A personal data breach is defined in the GDPR as a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.

What are some examples of a breach?

A breach can occur in many ways, including through lost laptops or smart phones, loss or improper disposal of paper records, intrusion into your network or PC by hackers and theft.  The definition continues to expand.

How can I limit the threat of a data breach?

Almost everyone can do more to protect personal data.  CSR Readiness® helps you assess your risk in handling personal data, remediate your processes, implement policies, train staff and continue to monitor and audit, as required by laws and regulations..


Who is CSR?

CSR Professional Services, Inc. is a leading provider of award-winning data life cycle management and expert services for businesses domestically and around the globe.

CSR enables compliance with personal data requirements, while facilitating best practices to reduce the business risk and financial liability associated with the acquisition, handling, storage, sharing and disposal of data.

Where is CSR located?

CSR Professional Services, Inc. is headquartered in Jensen Beach, Florida of the United States.  The information used to register your business and complete the Readiness Pro questionnaire will be received by CSR headquarters.  This information will remain confidential, will only be used in service of Readiness Pro, and will never be sold or used for other purposes.

CSR Professional Services, Inc. is a member of the EU/US Privacy Shield.  Our certificate can be viewed at https://www.privacyshield.gov/participant?id=a2zt00000004E5EAAU