Are you GDPR compliant?
Since the 25th of May 2018 the law on Data protection has changed. Most of the information given out to date, has been largely concerned with data collected from the web and the rights of the individual using the service, but employers need to be aware of their obligations to their employees too. As certified GDPR practitioners, DDBi can help you with the construction of compliant documentation, take you and your staff through the maze of the regulation and give everyone concerned the peace of mind that they know what they are doing is compliant. Think you have it covered, thats great! But if you are not sure we can take a look at what you do have, and tell you if you have done enough or maybe need to tweak things just a little. In most cases, if your company already satisfied the requirements of the Data Protection Act, there wouldn't have been much more to do, but ask yourself, does the company Personal Information Management System (PIMS) provide the protection your employees need? Does the company Information Security Management System provide the framework to keep the business safe? If you can't answer a straight yes to these questions, give us a call and we can help to put your mind at rest.
Want to go further?
Being compliant can be a chore, but it needn't be. Talk to us about what you do, how you do it and what processes and procedures you have in place. We will balance it against the best practice and help you plan a structure for compliance. Wheather you want to get Cyber Essentials, Cyber Essentials Plus or go the whole way and gain ISO27001, DDBi can help. As GASQ qualified ISO 27001 auditors, DDB Innovations Ltd can advise you on your cyber security, the working processes, user compliance issues and how to enforce and maintain a compliant working system, backed up by the required documentation to help you gain the certification you desire.
Furthermore DDB Innovations can provide internal auditing and pre-assessment auditing to test your systems and processes, making sure the system has proliferated through the company and has become embedded in the working culture. Compliance is becoming, evermore, a requirement of the supply chain, don't lose out through non compliance. Even if you are not ready to be assessed, putting the processes in place to enable future assessment can never be a bad thing. If you just want some help and advice on setting up a best practice system, give us a call.