Taking a close look at your GDPR arrangements and those of other parties you use

Having well informed employees and stakeholders is a key part of establishing a culture of compliance within your organisation.

Here we discuss training, not just of the GDPR but of the things that individuals need to do on a daily basis to ensure that personal data is treated properly. Doing this will help ensure you meet the GDPR principle of data protection by design and default.

Tags: , , ,

Continue reading

Personal data breach is one area where the GDPR lays down some quite specific rules on what is required. These rules require organisations to have documented processes and reporting mechanisms in place to ensure that they notify both individuals and authorities about any breaches.

In this video we discuss our approach and the steps and process we have put in place.

Tags: , ,

Continue reading

Having well informed employees and stakeholders is a key part of establishing a culture of compliance within your organisation.

Here we discuss training, not just of the GDPR but of the things that individuals need to do on a daily basis to ensure that personal data is treated properly. Doing this will help ensure you meet the GDPR principle of data protection by design and default.

Tags: , , , ,

Continue reading

This time we talk about the kinds of processes you will need for GDPR and how to approach the documentation of them. We also take you through our Subject Access Request document in detail.

Processes you will need for GDPR include:

  • Data mapping
  • Data Protection Impact Assessment
  • Subject Access Request
  • Rights
  • Breach
  • Etc. . . .

Tags: , , , , ,

Continue reading

The GDPR is vague on which technical measures are needed. In this video we try to give some guidance on how to approach implementing technical security and some straightforward ideas which we hope will be of use to those who might be less technical.

As part of all Gydeline subscriptions we make Cyber Essentials available. This baseline level of information security is recommended by the UK government and should be achievable by all sizes of organisation. A free sign up is available here.

Some useful links we share in the video:

Tags: , , , ,

Continue reading

As a relatively young business it is easier for Gydeline to comply with the requirement to minimise the amount of data that we both process and collect. In this video we make some brief comments about minimisation and provide some examples that show how we have reduced to a minimum the amount of personal information that we collect and process.

Tags: , , ,

Continue reading

  • 1
  • 2
  • 9

Copyright 2016–2018 Gydeline Ltd

Registered in England & Wales No. 09559617 | 48 St Nicholas Street, Bodmin, Cornwall, PL31 1AG | VAT No: 226 0817 24