We are pleased to tell you about our swift and structured approach.
And, the option of private training sessions for your organisation or clients.
One size definitely does not fit all. Whilst GDPR has a uniform set of rules to follow, every organisation, including yours, uses data in different ways and many organisations already have some form of governance in place in respect of data.
Consequently, we urge any organisation that is offered 'template' policies or an 'IT solution' to exercise great caution about the risk they are not unlikely to be running. In recent years, our legal sector auditing team has recorded more non-compliances than we can easily count due to organisations using template plans, policies and procedures!
Our approach is far more comprehensive and tailored to each organisation. Some organisations want all of the steps below, and some just need one or two; whichever you need, we're here to help!
Phase 1: We conduct a fixed price gap analysis
(For organisations that already have structured plans, policies and procedures in place). We provide you with a detailed report, including details of what you need to do or consider to plug any gaps.
Phase 2: We visit your office to map your data.
We meet with the relevant key people in your organisation to discuss and map as to how your organisation uses data and would like to use data.
Then, back at our own offices, we draft the new plans, policies and procedures for you (or augment your existing ones).
Phase 3: Training and support (if required).
The most common cause of data breaches is human error; it's one thing to rewrite the rulebook, but it's often something else entirely to actually implement it and affect changes in staff behaviour to meet it. We provide training and support at all levels to help you to embed your new plans, policies and procedures with your staff.
Simply 'form-filling: Helping you complete those data management forms from your clients.
A lot of these forms are starting to circulate, where your clients and others with whom you share personal data want to know how you are keeping data secure and protected. We can help you complete the forms; it's that simple.
Simply training: Training sessions just for your organisation.
We are pleased to provide training sessions (from 90 minutes in duration to up 2 days) with a syllabus ranging from a 'grounding on the real world implications of GDPR' to 'expanded specialist sessions' that delve into the fine detail of the requirements of GDPR.
Demonstrate that you have prepared
The organisations for whom we've conducted Phases 1, 2 and 3 are presented with our 'GDPR Prepared' mark.
There's no underestimating the importance of effective preparation for GDPR; this mark communicates to your staff, clients, suppliers and others that you have put in place processes intended to support best practice for data protection.
Having received the mark, you can choose to display it on your website, in email signatures, on business cards and stationery, in social media and elsewhere.
Please get in touch with us to discuss your concerns and requirements.