GDPR & Data Protection

Meeting your GDPR needs

You can’t have missed the introduction in 2018 of the European Union’s General Data Protection Regulation (GDPR). This is enshrined into UK legislation as the Data Protection Act 2018 meaning that Brexit – whatever type – doesn’t change your need to comply.

Breaching GDPR can incur the wrath of the Information Commissioner’s Office, but if you think enforcement only happens to the big companies, this link to the ICO shows prosecutions they’ve carried out on SMEs and individuals for offences such as not responding to Subject Access Requests and sending Personal Data to their home address.

The duty is on you to reduce the risk of breaching GDPR. We can help you with that. We can complete a full gap analysis to advise of where you need to enhance your Data Protection governance and thereafter assist you in becoming a more secure business.

Take advantage of our services, such as:

GDPR Auditing – we study your business in depth; talking to key people from across your business whether commercial, HR, IT, Legal or Payroll. We also examine how you store your data, manage it and who you share it with including your third parties. From all of this work, we produce an in-depth report on how your business stands against the requirements of GDPR and the Data Protection Act, as well as a helpful summary in the form of a heatmap, showing you the key areas needing attention. If you’re worried about what the result of an audit might be, then don’t worry; we can help you with that too.

Recommendations – you’ll receive a set of detailed recommendations from us. These will be specific to you and your business and based on what we have discovered about your current level of adherence to Data Protection legislation.

Planning GDPR improvements – We don’t leave you with a set of recommendations and tell you to get on with it. If you are going to make changes, you’ll need a project plan and we can deliver the GDPR project plan you need to make improvements. This will show the timescales, suggested resources you’ll need and the dependencies between each task, making sure you know what to do, when to do it and why.

Delivering GDPR improvements – If you wish, you can take our Audit report, recommendations and GDPR improvement plan and manage the delivery yourself. However, if you want we can manage the work for you, driving the plan and co-ordinating the work of your staff to deliver the work.

Ad-hoc consulting – This is a bespoke service for those companies that either don’t want to fully outsource their Data Protection work, or just need occasional support. Perhaps you just need an existing policy reviewed or a privacy policy written? You can contract us by the hour and get our expert advice, paying for no more time than we have spent on the job.

By recognising the need for pro-active Data Protection, you have already made the most important step towards protecting your data, your reputation and your business.

Wherever you stand on GDPR, we can assist you. Whether it is creating or standardising your Data Governance framework, ensuring you have the right policies in place or the right training for staff, we can ensure you get the most of your processes, people and systems.