The General Data Protection Regulation (GDPR) came into force on 25th May 2018, placing new obligations on anyone who collects, stores or processes the personal data of EU residents. Fines for non-compliance can be as high as €20 million or 4% of your annual global turnover. So if you haven’t started your journey to compliance, the time to act is now.
PLAN | DO | CHECK & ACT |
GDPR readiness assessment |
Design Controls/Procedures |
Monitoring, Measurement, Analysis and Evaluation |
GDPR compliance roadmap |
Documentation Management |
Internal Audit |
Understanding the Business |
Awareness & Trainings |
Data Breaches and corrective Actions |
Data classification |
Operations Management |
Continual Improvement |
Risk Assessment |
Incident Management | |
DATA PROCESSING INVENTORY | PRIVACY BY DESIGN | THIRD PARTY PROCEDURES |
Embracing change:
With such a complex regulation, achieving compliance is likely to be a lengthy and complicated business. This is not a one-step process. Compliance is an ongoing activity that must adapt as your organisation evolves. IBSCY Ltd can help your organisation.