The General Data Protection Regulation (GDPR) enters into enforcement on 25th May 2018 to supersede the 1995 EU Data Protection Directive (95/46/EC). All organisations that process personally identifiable information (PII) of EU residents must comply with the regulation, regardless of where they are in the world.
The regulation extends the data protection rights of individuals and will require organisations to develop policies, procedures, measures and security controls to protect the personal data of their customers, employees and other affected parties.
Some of the areas your organisation may need to address in terms of GDPR compliance include:
We can help your organisation with determining what compliance gaps you need to address and establishing a framework for data protection and information security by assessing your business context and developing suitable policies, procedures and information security controls using best practice standards and tools.
Please get in touch with us today to see how we can help you accelerate your GDPR project efforts. There is more detail on some of our services below.
Kick-start your GDPR project with a detailed assessment of your organisation's current state of compliance against areas such as governance, risk management, roles and responsibilities, scope of compliance, PIMS, ISMS, rights of data subjects and more.
The report we produce as part of the gap assessment will highlight action items and points of focus you may want to give a higher priority as you build up your GDPR project roadmap.
The starter package aims to help you accelerate your GDPR project and ease the burden on you by producing a number of key documents which form a solid compliance framework to develop further policies and procedures as needed.
Examples of where we can help you define policies and procedures or align your existing documentation: