European General Data Protection Regulation (GDPR) Risk Assessment Services
The European General Data Protection Regulation (GDPR) is the biggest change to data protection legislation since the 1998 Data Protection Act. It will have a fundamental effect on the way that organisations collect, store and process the personal information of EU citizens, and it becomes law in the UK from May 2018. Penalties for non-compliance have significantly increased to a maximum of 4% of global turnover.
Do you need to comply?
If you process personal information, you are accountable for the confidentiality, integrity and availability of the information that you hold. You will need to demonstrate compliance with the six data protection principles and make sure that you take sufficient technical measures to keep the information secure.
We provide a range of services that will help you to meet your obligations under the EU GDPR. These comprise of onsite briefings, workshops and consultancy services. We provide a tailored service that will provide you with visibility of personal information within your company workflows, and assessment of the gaps and risks that relate to GDPR compliance.
Since every company faces different regulations and has a different risk appetite, the final decision on which recommendations you implement remains with your senior management. We will however provide you with best advice so that you have the right information to hand to make the appropriate decision for you.
GDPR Accelerator Service
Our GDPR Accelerator Service is aimed at small-to-medium sized organisations. A certified GDPR practitioner will provide you with the guidance that you need to address your principle GDPR risks and guidance on how to complete the assessment for the rest of your company.
Our GDPR Accelerator Service engagement comprises of both onsite consultancy together with offsite report writing to combine:
- Half day GDPR workshop
- Half day fact-find
- Deep-dive analysis with your primary department that processes personal information
- Preparation and presentation of a Primary Risk Reduction report
GDPR Risk Assessment Service
Our Risk Assessment Service is aimed at organisations who need a partner to provide a full Data Protection Impact Assessment (DPIA). The Risk Assessment Service will work with all relevant departments to identify where personal information is, how you process it, as well as the gaps and risks that exist for you to comply with GDPR.
Our GDPR Accelerator Service engagement comprises of both onsite consultancy, together with offsite report writing to combine:
- GDPR workshops as necessary for your GDPR project team
- Half day fact-find
- Deep-dive analysis with all of your departments that processes personal information
- Preparation and presentation of a Risk Reduction report
- Half day Q&A session
To find out more about how our GDPR services can support your business, contact us here.