Our GDPR Consultants can help you implement best practices in preparation for updates to UK’s Data Protection Legislation in 2018, and work with you as more GDPR guidance notes are released. Read more about GDPR here.
Key Themes of GDPR
- 7 Data Protection Principles
- Basis for Lawful Processing
- Data Subject Consent (where required)
- Handling Special Categories of data (including in relation to children)
- Rights of the Subject
- Controller and Processor Obligations
- Security including handling Data Breaches
- Data Protection Impact Assessments (DPIA)
- Data Protection Officers (DPO)
How we can help with GDPR
Data Protection GDPR Audit
Many of the GDPR principles will be familiar and our GDPR Consultants can provide a data protection audit to help you identify the types of PII you hold, and evaluate your compliance with current legislation, and future best practice.
Our GDPR Consultants will review your current policies and procedures, and highlight areas of improvement.
Data Protection GDPR Workshop
Workshop the requirements of GDPR with our consultants to better understand the European regulations and evaluate how you can implement best practices in your organisation.
Data Protection GDPR Consultants
Work with our GDPR Consultants to implement Policies, Procedures and Processes within your organisations, including drafting documentation.
Data Protection Impact Assessment
It’s advisable to start with an impact assessment, and our Consultants can help you prepare this in relation to the PII you store and process.
Your privacy statement should provide clear information on your data protection practices including how you manage requests to access data, data breaches and any third parties who process or handle PII. Our Consultants will work with you to produce a clear and accurate statement.
A key theme of Data Protection and particularly GDPR, will be accountability. Our GDPR Consultants will help you build Data Protection into the design of your business processes, ensuring accountability at every step.
Does BREXIT Impact GDPR?
The ICO guidance (as of Jan 2017) says:
“The GDPR will apply in the UK from 25 May 2018. The government has confirmed that the UK’s decision to leave the EU will not affect the commencement of the GDPR.”
While there are still many questions surrounding the actual GDPR legislation, we are confident that the Data Protection Act 1998 will be reformed, and our experts in Data Protection and Information Security will advise you on the best practice that is likely to meet and exceed the requirements.
GDPR is expected to come into force in May 2018, so conducting a Data Protection Audit now and then a follow up with our consultants in 2018 will put you in good standing.
Basis for Lawful Processing
Contrary to popular belief, Data Subject Consent is only one of the lawful basis for processing data.