The General Data Protection Regulation (GDPR) will replace the Data Protection Directive 95/46/EC and is a legal requirement for all businesses in the EU and those holding data on EU citizens. There are serious consequences for non-compliance with fines of up to €20 million or 4% of your global turnover.
Tiedata assess the areas critical to achieving GDPR compliance. These areas are highlighted in the diagram and are broken down in more detail below:
- Assess the information that you hold.
- Determine the best approach to view, classify and categorise the data within your organisation to facilitate data governance.
- GDPR specific actions including ensuring organisation wide awareness and more.
- Assessments of the risks posed to the Confidentiality, Integrity and Availability (CIA) of the data and information that your organisation processes and more.
- Implement a Defence in Depth strategy using multiple security measures to protect the integrity of the information assets within your business.
- Help you identify the current folder structure and who has permissions.
- Assess the backup and recovery systems.
- Implement or update the required written Policies, Processes and Procedures as necessary.
To learn more about GDPR and our approach, download our GDPR and Information Security Assessment brochure below. Additionally, contact us if you want to know more about what we can do to help you prepare for the new regulation.