The GDPR is the EU Regulation that will replace the Data Protection Act 1998 in the UK and the equivalent legislation across the EU Member States. All UK business will be subject to GDPR from 25th May 2018, regardless of Brexit. Failure to comply could cost you fines of up to 4% of your company’s global annual turnover, not to mention your reputation.
Here’s a snapshot of what GDPR will require you to do:
keep a record of data operations and activities and consider if you have the required data processing agreements in place
carry out privacy impact assessments (PIAs) on products and systems.
if applicable to your organisation, designate a data protection officer (DPO).
review your personal data collection processes.
know how and when to notify the relevant supervisory authority of a data breach.
implement “privacy by design” and “privacy by default” in the design of all new and existing products.
How can we help?
We have partnered with IT and cyber security experts, Soitron UK, to offer you a comprehensive range of information security management services:
CONSULTANCY AND TRAINING
Our lead auditors can provide on/off consultancy and training that will support you to:
- implement and maintain ISO27001 within your organisation
- conduct a GDPR gap analysis to establish your state of readiness
- develop effective GDPR policies, audit checklists and protocols
- raise awareness of GDPR requirements and benefits within your organisation.
IT SYSTEMS DEVELOPMENT
Our partners at Soitron UK have the technical expertise to help you develop robust IT systems that that comply with GDPR and protect data and customer information.
Soitron’s technical experts can help you to test the cyber security levels of your existing IT systems and develop safer systems, networks and users with:
Ethical hacking to test your system’s security.
Cyber Essentials and Cyber Essentials Plus:
Government-backed programmes, designed to encourage businesses to achieve a baseline level of security that can be evidenced to stakeholders.
Identify and act on weaknesses within your networks.
Raise awareness of cyber security issues and good practice within your organisation.
Email us: email@example.com
Call us on: 0333 939 8797
Find out how GDPR will affect your business: