​Audit and Compliance 

18863 - GDPR Web Page Fig 1 Graphic Large (1)

 

 

General Data Protection Regulation (GDPR)


Ensuring the ongoing confidentiality, integrity, availability and resilience of processing systems and services is a requirement of the GDPR. Our data protection consultants can help you to achieve this. 

When a breach incident occurs, we can provide you with our Cyber Security Incident Response service to help you restore the availability and access to personal data in a timely manner following a technical incident, and track down the likely cause of the breach.  

 

 

How we can help

The GDPR requires that you have a process for regularly testing, assessing and evaluating the effectiveness of technical and organisational measures for ensuring the "security of the processing”. Our technical services include a highly-skilled penetration testing team to test your system defences and websites for vulnerabilities, carry out exploits in a safe manner, and advise on appropriate mitigation measures to ensure that you can continue to protect personal data. 

Along with expert advice, we also have a track record of actually implementing procedures to better manage data protection requirements. This includes establishing and testing the internal procedures needed to ensure timely notification. See our Data Protection Act page for further information.

  • In GDPR data security plays a prominent role
    reflecting the importance of protecting data in today’s comprehensive privacy regimes.
  • The GDPR imposes stricter obligations
    on data processors and controllers in respect of data security when compared to the Directive 95/46/ec. The Regulation also offers guidance on appropriate security standards.
  • The GDPR adopts specific breach notification guidelines
    for the first time. The Directive was silent on the subject of data breach, whereas the GDPR contains a definition of “personal data breach” and notification requirements to both the supervisory authority and affected data subjects.
  • The GDPR definition of a personal data breach is

    a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised, disclosure of, or access to, personal data transmitted, stored or otherwise processed”.

    This differs from US state data breach laws, for example, which are triggered when data is exposed that can lead to fraud or identity theft, such as financial account information.

Are you preparing for the GDPR?

If you would like further information about the GDPR and how to plan for it, get in touch with one of our experts today!

Please call +44 (0) 870 600 1667 or email contact@7safe.com

Or complete our enquiry form ​below and one of our experts will get back to you​ shortly.

Read the latest view from PA Consulting Group around how GDPR compliance will affect your business.

About You

Your Requirements 

Please try to include as much information as possible on your requirements. Not sure on details? Not a problem, our team can go through this with you when they get in touch.