Fusion provides affordable bespoke solutions to meet your General Data Protection Regulation (GDPR) requirements.
Audit & Gap Analysis | Implementation | Practical Training | Data Protection Manager or Consultant Services | Breach Advice & Investigation
What is the General Data Protection Regulation? (GDPR)
On 25 May 2018, the General Data Protection Regulation (GDPR) came into force across Europe, including the UK. The Regulation aims to enforce more control over personal data and to create a uniformity of rules across the EU.
What about Brexit? Does this still Apply to the UK?
Yes, on 21 June 2017 the UK Government revealed its legislative programme for the coming two years. The Government has confirmed its intention to bring the EU’s GDPR into UK law, despite pressing ahead with the UK’s withdrawal from the EU. This continuation ensures the country’s data protection framework is “suitable for our new digital age, allowing citizens to better control their data”.
What are the exact GDPR regulations?
Although the regulations are very complex they can be summarised as follows to assist you to process and store data more effectively within and outside of your organisation:
· Know what you have and why you have it;
· Manage data in a structured way;
· Know who is responsible for it;
· Encrypt what you wouldn’t want to be disclosed;
· Design a security aware culture;
· Be prepared – expect the best but prepare for the worst.
Increased penalties under GDPR
Under the current Data Protection Act, the maximum fine the ICO may penalise a data controller, that has breached the legislation, is £500,000. Under GDPR, however, the ICO can impose fines of up to 20 million Euros or 4% of the company’s worldwide turnover (whichever is greater).
Here at Fusion Forensics we provide tailored GDPR services from initial assessment and implementation through to continued support and advice.
Initial Risk Assessment
One of our experts will visit your organisation to undertake a risk assessment of your current data held and how it is used. Looking at your process and procedures around the data you hold, we will evaluate our findings and produce a report including any issues or procedures that can be improved and implemented in order to ensure that you are GDPR compliant.
Fusion can assist your organisation to implement the recommendations from the initial risk assessment, which may include the provision of our GDPR Experts, templates and documentation and identifying partners to assist you in attaining GDPR compliance.
As your organisation evolves, so does the data you hold and your processes you conduct. Fusion can offer you post implementation audits, provision of a Virtual Data Protection Officer (vDPO), plus a dedicated helpline for any GDPR concerns and advice, including how to deal with data breach emergencies. All of this can be provided under a yearly support contract.