GDPR / Data Privacy

On the 25th May 2018, the General Data Protection Regulation (GDPR) was enforced and replaces the Data Protection Directive of 1995. The aim of the new regulation is to enhance and unify data protection for all individuals living in an EU member state.

The regulation applies to:

  • Any organisation that collects & controls personal data from EU citizens

  • Any organisation that processes data on behalf of another organisation (eg. a cloud service provider)

If your organisation is outside of the EU but collects & processes data of EU citizens, the regulation also applies.

The financial implications resulting from a failure to comply are significant. A fine of 20 Million Euros or 4% of the organisation’s global turnover (whichever amounts to more).

Our key GDPR consulting services include:

We provide solutions according to your business as one GDPR solution is not suitable for every type of business, so we will assess the current GDPR status and propose best suitable solution.

  • Free GDPR readiness /gap assessment
  • Privacy policies and procedures
  • Personal data inventory management
  • Security and organization measures required for privacy
  • GDPR training and awareness
  • Data subject requests and secure communication method
  • Data processing agreements with vendors
  • Data breach management
  • Privacy by design and default
  • Privacy risk assessment and DPIA
  • GDPR governance

 

In nutshell CyberSpeil experts have knowledge in GDPR implementation and sustenance and can customize solution according to your requirement.