Probably the most significant data security law in the world, the EU General Data Protection Regulation (GDPR) requires all organisations – wherever they are in the world – that process the personal data of EU residents to comply with the Regulation. It recognises the value and importance of our personal information, and the aim is for it to become part of the fabric of an organisation in the same way as for example Health and Safety. Do you comply?
Does GDPR Affect You?
Organisations found in breach of the regulations can face fines of up to £20million, or 4% of annual turnover, whichever is greater, (and also potential lawsuits from data subjects affected) and therefore significant enough to make compliance economically sensible. Could your business survive the financial cost of non-compliance?
We Are The Missing Link are able to offer a number of services to assist you in ensuring that your business is operating within the forthcoming regulations:
You’re not sure what personal data you hold or where it resides:
Solution: Data Flow Audit
A great starting point when transitioning to a compliant framework, here we look at the lifecycle of the information you are processing prior to compliance. Once complete you will have a full inventory of your data process as it currently stands
You are Uncertain How Much Your Organisation Complies with GDPR
Solution: GDPR Gap Analysis
Once your data flow audit is completed we are then able to review your existing privacy management and information security arrangements against the requirements of the regulation. Once completed you will have a report detailing what is required to achieve compliance.
You don’t know the data protection risks of introducing a new system or process
The Solution: Data Protection Impact Assessment
This will be mandatory for some organisations – ask us for more information. If you are implementing a new process or system for processing data, we will assess the data protection risks and provide a remediation plan to mitigate those risks.
You need help implementing your GDPR compliance project
Solution: GDPR Transition Services
Get support adapting your existing data protection programme to the GDPR.
- Data protection frameworks
- Policies and procedures
- Data processor management
- Information security
- Incident management
- International data transfers
- Compliance documentation
You need to make sure that staff and management understand their responsibilities under the GDPR.
Solution: In-house GDPR training and awareness
Deliver awareness sessions specifically tailored to your organisation’s requirements.
Want to look into it yourself – That’s great there is a huge amount of resource available at www.ico.org.uk – happy reading.
Why is GDPR important – check out our article here https://wearethemissinglink.com/why-we-need-new-data-protection-legislation