0800 082 2420 email
0800 082 2420 email

Preparing for GDPR

Where you need to start your focus with GDPR

Mike

Technical Consultant

close
0800 082 2420

THE APPROACH IN A NUTSHELL

We recommend that you begin your journey to GDPR compliance by focusing on four key steps:

Discover

Identify what personal data you hold and where it resides.

Manage

Gain an understanding of how you use personal data, how it is accessed and who accesses it.

Protect

Establish formal security controls to prevent, detect and respond to any vulnerabilities and potential data breaches.

Report

Execute on data requests from people in a timely manner, report any data breaches within 72 hours and keep required documentation.

WHAT DOES THIS MEAN FOR MY IT SYSTEMS?

The general requirements for IT systems under GDPR can be summed up in three words –  preventing, assessing and monitoring. In addition, as a business owner you will be required to ‘ensure a level of security appropriate to the risk’ and this can be achieved by: