Complying with the General Data Protection Regulation (GDPR) isn’t optional. As of 25 May 2018, every single business that processes or holds the personal data of data subjects within the EU are bound by the new regulations.
The cost of non-compliance? Potentially millions of pounds. It’s not all doom and gloom though. Our sister company, QMS, have partnered with Secure Business Computing Solutions (SBCS) to offer a comprehensive GDPR Assessment, that’ll help to ensure your business is on top of its requirements.
The assessment will usually last between three and five days – the duration will largely depend on the size and complexity of your business. The six key areas covered are:
Opening meeting: the main purpose of this is to gain an overview of engagement and establish key stakeholders.
GDPR fundamentals training
We’ll get you clued up on all of the below areas:
|GDPR overview||Key changes over the Data Protection Act||The six privacy principles|
|Data protection & privacy||Lawful processing, consent, legitimate interests and children||Rights of data subjects|
|Privacy by design||Data Protection Officer (DPO)||Personal data breaches|
|International transfers||Remedies, liabilities and administrative fines.|
GDPR assessment: we’ll take a look at leadership, roles and responsibilities, cloud services, risk management and data protection.
Data mapping: your instructor will conduct a data mapping exercise to help uncover where personal information is processed and stored, and look at international transfers of personal data.
Data protection impact assessment: for this part of the assessment, your instructor will organise exercises to help employees identify and reduce privacy risks during projects.
Closing meeting: the final part of the assessment involves giving you your report, templates to help you achieve compliance, providing guidance on actions required to align non-conforming processes with GDPR requirements, and the consultancy engagement sign-off.
Get more information