The General Data Protection Regulation (GDPR) came into force in May 2018. It requires organisations to make a number of changes to the way they manage the personal information of EU Citizens. No longer can we issue opt out emails and presume that silence is consent – companies will need to be able to prove that they have been granted permission to use the data they hold. And that is just the beginning.
Any person will also have the right to challenge a company about the information they hold – and they have the right to be forgotten – this means call recordings, CCTV footage, email trails, anything that can be counted as evidence of the existence of an individual must be removed.
If you want to understand what the impact of this new regulation will mean for your organisation and ensure you are aligned with the requirements, then you should consider the GDPR Assessment offered by QMS International.
These are just some of the benefits you will experience with the GDPR Assessment delivered by QMS International.
Like with all the services we offer, we focus on making the process of achieving compliance with the GDPR as cost-effective as possible – while also ensuring the process remains straight forward and easy to understand so that you are confident in what you are doing by the time we leave your organisation.
You could align your current processes with the requirements of the GDPR in just 3 days by choosing the GDPR Assessment delivered by QMS.
The GDPR Readiness Assessment comprises the following:
The GDPR assessment combines training and gap analysis, with practical exercises to help ensure our clients are equipped with the tools and knowledge required to secure personal information in accordance with the General Data Protection Regulation– ensuring that the risk of fines is significantly reduced.
To begin, we provide a one day training workshop which ensures everyone understands the General Data Protection Regulation requirements. This will cover the six privacy principles, the rights of data subjects and the responsibilities of Data Protection Officers (DPOs).
Following training, the GDPR Consultant will take the stakeholders through a detailed Gap Analysis using a bespoke GDPR Assessment tool. This will identify key areas that require improvement. These changes will be documented in a report, which will be provided to the client in an easy-to-follow format.
Why you should choose QMS to assist your business with ISO certification
A visual guide to the areas covered by each of the information security products
This checklist covers the key areas that must be addressed in order to achieve GDPR compliance
A real life case study of a company that had a GDPR Assesment
Understand the areas of the GDPR which are covered by ISO 27001 Certification
The QMS International suite of information security products
QMS is committed to providing a cost-effective route to GDPR compliance. That’s why we focus on making the process simple and straightforward, with the consultancy visit usually completed in 3 days (dependant on the size of your organisation).
To find out how affordable the GDPR Assessment is, why not complete our Fee Calculator below and we’ll email you a no-obligation quote via email within 30 seconds.
The GDPR Assessment typically takes 3-5 days to complete.
Following the visit from a Personal Data Consultant you are then provided with an action report which will help you to establish a timescale for implementing all of the required changes. This will vary between businesses, ranging from the way clients opt into email communications, to the measures you have in place to ensure their data is easily identified and removed from your records, when requested, within the allocated time frame set out by the GDPR.
At QMS we are constantly updating our approach and process to meet the latest changes in how the GDPR works.
Fri, May 24 2019
In the year since it was introduced, how does the European Commission rate the progress of the GDPR?
Thu, February 14 2019
Following recent updates to privacy legislation, businesses now need to build data protection into their products and processes right from the design stages.