Cyber Security

GDPR

What is GDPR?

The European Commission summarises GDPR as: Privacy by design and privacy by default. This means that any action that involves processing personal data must be done with data protection and privacy built into every step. Once a product or service has been released, the strictest privacy settings must apply by default.

As a start up or an established financial services firm, what do you need to do to ensure you are complying with GDPR?

Are you complying with the General Data Protection Regulations? 

Financial services firms process vast amounts of personal data on behalf of their customers, payment beneficiaries and employees. With recurring news stories of data breaches of customer data, and the consequent damage to the reputation and trust, more emphasis is being placed on data security and GDPR compliance. We can help your firm with its GDPR compliance in the following ways.

  • Provide a data mapping exercise, examining the categories of personal data collected by the firm, its journey through the firm and any third parties to whom the data is sent, the lawful basis relied upon and the controls in place to protect the data.
  • Perform a firm wide gap analysis, examining where your firm is falling short of the requirements of GDPR, and providing recommendations to remediate the shortcomings.
  • In consultation with key staff within your firm, author key data privacy related policies and procedures specific to how your firm operates. Documents we can provide include your firm’s data protection policy, customer privacy notice, data subject request procedures, template responses to data subject requests, data deletion procedures, etc.
  • Training staff on understanding their responsibilities under the GDPR.

Helping you implement the regulations in a practical way that works for your business

As cyber security experts, we have extensive experience in initiating the gap analysis, carrying out annual audits, developing policies and procedures as well as a full GDPR review and remediation strategy along with training for our clients.

If you are looking for assistance in an ad hoc compliance project in setting up, reviewing or improving your GDPR compliance, then let’s start a conversation today.


Other Cyber Security Services

Get in Touch...

Contact us for a free consultation