To avoid potential sanction/ criticism from the Information Commissioner and the individuals whose information you process you need to take steps towards complying with this new law.
You need to firstly assess your current level of compliance with data protection law and how this measures up to the requirements of GDPR.
We can do this for you.
We will discuss the nature of your business with you, what personal information you process, why, where it is located, how long you retain it etc. We can then map the ‘flow’ of information in to and throughout your organisation and see who has access to it, who is it shared with etc. We will also review any existing policies and procedures you might have.
This work will tell us what needs to be done as part of a GDPR implementation plan.
In conjunction with a cyber security professional we can also assess any cyber-crime and other technology related risks to the information you process and then look, as part of the GDPR implementation plan, to put in place appropriate measures to keep your information safe.
For further information please contact us.