Data Protection Services and GDPR
If you process personally identifiable information (PII) relating to an identifiable natural person residing in the UK and EU, then you must comply with UK & EU legislation i.e. the Data Protection Act 2008 and the General Data Protection Regulation (GDPR). Both laws are intended to give back control to individuals and how their rights to privacy must be managed in the digital age.
The major difference between the old and new/updated legislation is that they require mandatory notifications to the Information Commissioners Office (ICO) for breaches, which could see penalties of up to 4% of global turnover or €20 million – whichever is greater being levied upon the companies involved. Custodial sentences may also be possible for data protection breaches under other UK legislation.
To help organisations traverse this complex legislation, we have created a range of Data Protection Services which cover all aspects of Data Protection. From an initial assessment of where you are today right through to an outsourced Data Protection Officer service.
Data Protection Assessment: Gap Analysis of an organisations Data Protection processes and procedures against the UK and EU Data Protection Legislation (includes Training on the legislation, Data Mapping/Data Protection Impact Assessment exercises and a comprehensive suite of templates).
Data Protection Audit: Audit of an organisations ongoing Data Protection maturity and compliance with the UK and EU Data Protection Legislation.
Data Protection Support: Day to day telephone and web support for internal Data Protection owners or leads.
Data Protection Officer: Cost effective outsourced Data Protection Officer service for organisations that must have this role in place or for proactive organisations that wish to demonstrate their data protection commitment to clients.
For further details click here