In May 2018 the UK Data Protection Act, commonly referred to as the UK General Data Protection Regulation (GDPR), came in to force and there still is a fair amount of confusion about what a business must do to become, or remain, compliant. Additionally, in 2019 a new ePrivacy regulation came in to force which runs in parallel with GDPR.
Most businesses are already familiar with the GDPR and the ISO 27000 series of standards. But there are many more regulations that businesses have to comply with, possibly even more if your business operates internationally.
The Network and Information Systems Directive (NIS) came in to force slightly earlier in May 2018; businesses providing essential services within the energy, transport and health sectors will need to comply with NIS.
Does your business need to be certified within the UK Government’s Cyber Essentials scheme? If so then we can assist you with your application, audit and even deploy the security changes that it requires.
If your business accepts credit card payments or stores credit card information then you must be PCI-DSS compliant.
We can advise on, document and implement the policies and procedures that your business needs to have in place to be compliant.
Our services include;
- GDPR audit, compliancy check and documentation package. We can help you become compliant or audit your existing policies to make sure that they are in keeping with the regulation.
- GDPR assisting with Subject Access Requests. SAR’s are not clear-cut, for example not all data should be supplied upon request. There are almost 40 exemption categories and in addition, you must make sure that any data you provide in response to a SAR does not include details of any other parties.
- We can assist you with applying for Cyber Essentials certification. The scheme has very strict auditing and security requirements that are beyond the technical capabilities of most small businesses. In addition, Cyber Essentials needs to be renewed annually and any new requirements rolled out across your organisation.
We are reasonably priced, providing estimates or fixed-price quotes upfront with no hidden surprises.