We provide a UK GDPR Compliancy Action Programme that includes:
- Compliancy Action Plan
- Privacy Impact Assessment
- Privacy Policy for your template:
- Consent Form
- Terms and Conditions
- Associate Agreement
- Website documents:
- Privacy Policy for website
- Customer Care Policy
- Complaints Policy
- Internal Data Protection Breach Register
- Team Assessment form
What we will look at:
• All information assets both manually and electronically – documents held on computer locally and cloud-based platforms. Making sure areas in relation to safeguarding and the security around keeping medical records are all compliant with UK GDPR regulations.
• Making sure you identify the risks to personal data and are able to put in place the necessary controls in order to protect your data both internal and external.
We will go through all the questions to complete each section of the plan, including each of the forms, assessments and templates and how to implement them.
At the end of this process you will have a completed GDPR Compliancy Action Plan specifically for your business.
The Compliancy Action Plan includes:
- Roles and Responsibilities.
- Lawful Basis for Processing Data.
- Remote Workers.
- Data Subject Rights.
- Data Mapping.
- Retaining Personal Data (Storage Limitation) – Principle 5.
- Request for erasure?
- Mapping – Business Areas.
- Technology used – what systems do you use for your processing activities.
- Information Notices – what are they?
- Subject Access Requests.
- How does Pseudonymisation Protect Data?
- Consent – are you up to date with this?
- Data Protection Impact Assessments (DPIAs)
- Marketing with data protection in mind.
- Cloud Services – checking who is GDPR compliant.
