DPO SERVICES
GDPR is the European Union’s new regulation that came into effect on May 25’ 2018
and requires businesses to protect the personal data and privacy of EU citizens .
Under the GDPR, you must appoint a data protection officer (DPO) if you:
It is recommended that private organisations carrying out public tasks or exercising public authority designate a DPO.
Those who are advised to appoint a DPO include (this is a non-exhaustive list - if in doubt then you need a DPO):
All our Data Protection Officers (DPO) are fully qualified (GDPR.Cert) and have knowledge of data protection law and practices.
Our DPOs will work in partnership with your internal Data Controller and data personnel to review your documentation and polices to ensure they are compatible with the GDPR on an on-going basis
Our DPOs will give your organisation independent advice without any internal conflict
We will become the mediator between the organisation and ICO should any breach or conflict occur.
Enrolling with our DPO service will give you full holiday cover or cover if your Data Controller or Data Protection Officer leaves the organisation.
Annual cost of employing a in-house DPO would be around £60,000 excluding recruitment fees against considerable savings by appointing external DPO.
As qualified personnel you can be assured that our DPOs remain up-to-date with the General Data Protection Regulation and changes made, including any additional requirements after Brexit
We can provide outsourced Data Protection Officer Services on a ‘fractional’ basis. We therefore provide the amount of time and resource that is appropriate to the needs and requirements of your individual organisation. This enables you to avoid all those recruitment and retention issues and provides the highly skilled, broadly experienced individual that you need, at the right times and at a much lower overall cost.
Whilst undertaking the DPO activities on your behalf we will have due regard to the risk associated with processing operations, taking into account the nature, scope, context and purposes of processing.
We will inform, advise help and support your organisation and those within the organisation who carry out Personal Information Processing of their obligations pursuant to the GDPR and other Data Protection Regulations.
We can provide a dedicated Data Protection Officer to visit on-site at agreed levels to assist with all aspects of GDPR including monitoring and compliance.
We will assist in the monitoring and compliance with the GDPR Regulation and other associated Data Protection regulations by undertaking audits and review visits. These will include reviewing the implementation of the policies for the protection of personal data, including the assignment of responsibilities, cyber security, administrative processes, awareness-raising and training of staff who are involved in the processing operations of the organisation.
We will act as the focal point for GDPR requests etc. by acting as the contact point for the supervisory authority on issues relating to processing, including the prior consultation referred to in Article 36 (if required), and to consult, where appropriate, with regard to any other matter.
We will act as the focal point and conduit for GDPR notices such as privacy requests etc. required by the GDPR.
We can act as a within EU representative for you if you are based outside of the EU and operating within the UK.
We will support your organisation should ever be subject to a Data Breach and the 72-hour requirement to report such a breach to the Information Commissioner’s Office (ICO).
We will work with your organization to develop a comprehensive understanding of the scope of your environment. This will include all flows of personal data and potential exposure to breaches or censure under the current regulation.
Once the scope has been defined and formally agreed, we can help to establish the policies, procedures and lines of accountability necessary to meet regulatory demands.
A significant reform proposed in the upcoming EU regulation is the principle of Privacy by Design. This principle recognizes the fundamental importance of integrating data protection and privacy considerations into an organization’s operations.
Data Privacy Impact Assessments (DPIAs) are an integral part of the Privacy by Design approach. Having development experience, our consultants take a practical approach to completion of DPIAs. We can help you by:
We can also provide advice where requested as regards the Data Protection Impact Assessment and monitor its performance pursuant to Article 35.
We can provide Introductory Training Courses and Workshops on GDPR for your organisation.
We can help you improve your cyber security and prepare for cyber security incidents. Our consultants can provide:
These services result in practical and policy-driven solutions in order to drive organizations to an enhanced cyber security outcome.
We can arrange for the Cyber Essential Plus (The Government’s preferred Cyber Security accreditation for SME businesses) certification of your organisation.
If a greater degree of compliance is required (e.g. ISO 27001) then we have associations with many of the country’s leading security firms and can recommend a suitable partner.
Call +44 (0) 333 998 0041 or complete our GDPR enquiry form for help and support.
Make a GDPR Services EnquiryThe GDPR is the European Union's new regulation that came into effect on May 25'th 2018
and requires all businesses to protect the personal data and privacy of EU citizens. At the heart of compliance is assessing how you are processing the personal identifiable information and the risks being incurred in doing so.