We’ve undergone an extensive survey with regards to our Clients and Prospects, HR, Warranties, Complaints and Investors – anywhere personal data is used. Our processes and procedures have been explored, and understood so “gaps” in compliance can be discovered.
Through this survey we have followed our consultant advice about changes to reduce the likelihood of any compliance problems, and to minimise the impact on both the data subjects, and the organisation. With this work we have provided new and/or improved clauses to include in our policies and procedures which are now established in to our policies.
Where our staff handle personal data, or interact with clients or members of the public we have been careful to deliver extensive training in any new procedures that have been established.
A specialised GDPR training via online material which explains the importance of data protection for every new staff is under process.
We are and will be constantly reviewing GDPR as its effects become apparent and will continuously feedback findings into our processes, training and staff.
We routinely undertake an annual review to ensure that our policies and procedures continue to be aligned according to the law.
A Register of Data Processing to keep track of Training and Induction processes, Policies and contract terms as mandated by GDPR is under process. This demonstrates that we consider GDPR as a critical requirement.
Our Breach Detection service helps in tracking data, prevent data hacking and stealing. This detection provides “Evidence Quality” to further support legal action if needed.
We have experts to assess the appropriate course of action in the unlikely event of a data breach.
Chris Ross-Lewin is Denave’s Data Protection Officer and can be reached at firstname.lastname@example.org