The EU General Data Protection Regulations replaced the UK’s Data Protection Act on 25 May 2018 and the UK Government has indicated that the GDPR will remain in force after Brexit.
These new regulations mean that companies need to be transparent with how they hold personal data and to record what they are doing with it.
Not only that, companies should now be maintaining processes and data protection in a clear and coherent way due to the higher standards required for transparency and accountability.
With the risk of penalties of £18million or four per cent of global annual turnover, whichever is greater, Companies need to ensure their data and privacy policies are in line with GDPR.
We at ForrestHR can help in 3 simple steps:
1. ASSESS & ANALYSE
This gap analysis and assessment will identify how your business is currently placed to deal with the new data protection regulations.
We will also provide detail on how to end any unwanted ‘data footprint’. A report is provided following the analysis which will detail the areas that require remedial action that we can also implement for you.
2. REMEDIATE & IMPLEMENT
Ideally, this follows “Assess & Analyse” as the documents and processes will be now in line with those recommended to remedy the gaps that we have identified.
However, should you wish to cut out the Assess & Analyse option and go straight for the purchase of the ‘toolkit’ of appropriate documents, you are able to do so.
Either way, our suite of documents will ensure you have everything you need to ensure you are fully compliant.
3. MONITOR & MAINTAIN
You now have everything in place, now what? Compliance with GDPR does not stop here.
You will need to continue with data protection impact assessments, deal, manage and respond to SAR’s and potential breach of personal data enquiries.
We recommend that you outsource these responsibilities and retain our GDPR expert to become your virtual Data Protection Officer (DPO) and deal with most data protection related queries on your behalf.
Each of the above steps can be purchased separately or sign up for all 3 at a discounted rate for a more cost-effective solution and most importantly removing any further GDPR anxiety.