There’s no getting away with it – the General Data Protection Regulations (GDPR) are here to stay, and although the principles of Data Protection haven’t radically changed with the introduction of GDPR, there are some subtle changes that need to be considered by all organisations that deal with personal data. They applies to ‘controllers’ and ‘processors’. The controller says how and why personal data is processed and the processor acts on the controller’s behalf.
If you are a processor, the GDPR places specific legal obligations on you; for example, you are required to maintain records of personal data and processing activities. You will have significantly more legal liability if you are responsible for a breach. These obligations for processors are a new requirement under the GDPR.
The GDPR applies to ‘personal data’. The definition is now more detailed and makes it clear that information such as an online identifier – e.g. an IP address or email address (commercial or non-commercial) can be personal data.
At Blackmores, we understand that compliance with GDPR is more than just a communicated Data Protection Policy. Our experience with Information Security and Business Continuity management has also assisted us to develop a robust compliance model – drawing on best practice in a number of areas.
We work with your organisation to undertake a thorough Privacy Impact Analysis to assist you to understand where personal data touches or resides within your organisation. We then work with you to develop the controls you need to comply – thus providing the evidence that you have undertaken the steps required to achieve compliance. Ongoing review ensures that you remain in control of data protection moving forwards.
So how can Blackmores help you with GDPR?
We offer the following services:-
For a full brochure of our services, simply contact us on: firstname.lastname@example.org
We also have a Case Study available for download.
We have a free ‘Introduction to GDPR’ available to watch on YouTube.
Get Supported >