IGA News

GDPR: Ongoing Compliance

GDPR: Ongoing Compliance

29 June 2018

The General Data Protection Regulation (GDPR), new EU legislation to protect consumers’ privacy and strengthen their rights, came into force on 25th May. Even if your business now meets GDPR requirements, you must continue to monitor your data protection processes.

Data security will be an ongoing responsibility from now on, as any time you create a new process or your customers’ data is passed to a new third party you must stay GDPR compliant. You should also ensure that you are maintaining any new processes you have created, and that all your data is documented along with the purpose for its use, the location where it’s stored, and the names of anyone who has access to it. It is likely that GDPR legislation will be updated in the future, so you must also stay on top of updates.

Remember, if you haven’t taken the steps required to comply with the regulations and protect your customers’ data you could now be liable to a fine of up to 4% of your turnover. If your business isn’t compliant, you should work through the IGA’s ‘Garage Guide to GDPR’ workbook in full, as it contains all the steps you need to take to ensure that your business complies with the new legislation.

No matter your current level of GDPR compliance, the IGA continues to offer the following on-site support services, and we will keep you up-to-date with new changes to the legislation via the bulletin.

GDPR Gap Analysis - £245 + VAT half day

  • The GDPR gap analysis service provides an assessment of your organisation’s current level of compliance with the Regulation, seeking to highlight the standard requirements and the shortcomings in relation to those requirements
  • This will assist in establishing an appropriate action plan in relation to the needs of your organisation, showing areas of strength and weakness
  • You will also be provided with a general, indicative figure of overall compliance with the Regulation

GDPR Consultancy - £245 + VAT per half day or £395 + VAT per full day

  • This will assist in ensuring your organisation meets the necessary GDPR requirements
  • Provides assurance for customers, employees and all other data subjects that their information is being processed lawfully and stored securely
  • We will work with you to produce personalised policies, procedures and guidance to facilitate compliance with the Regulation

GDPR Quality Assurance Certification Audit - £395 + VAT full day

  • During the certification audit, we assess, in detail, your degree of compliance with the requirements of GDPR
  • The audit consists of informal interviews, examinations, observations of your system in operation and review of relevant documentation and performance in identified focus areas
  • Findings, including non-conformities, and conclusions are presented at the end of the audit in a closing meeting and included in the audit report
  • After the audit you will be informed of non-conformities you need to address and respond to within an agreed deadline
  • When found compliant, we issue you with the below quality assurance certificate that you will be able to display at your premises:

To book any of the services above or discuss which option would be best for your business, please call the IGA Member Helpline on 0845 305 4230.