The Graphite Blog

With just over a month to go we thought we'd publish what we are doing to get Graphite Web Solutions ready for the General Data Protection Regulations (GDPR) which comes into effect on 25 May 2018. We have reviewed the process, watched many webinars, reviewed websites and read many documents and believe we have developed documentation and a process to ensure we comply.

GDPR Policy

We have created a GDPR Policy document which is our interpretation of the rules and is based upon a free Policy template provided for free by Vinci Works which we found very useful. Here is a copy of our policy:

GWS GDPR Policy

GDPR Process

In order to comply with the regulations and to explain to the owners of the information we hold, we have created a Process document which details what we hold, why and what we do with the information. Here is a copy of the process with sensitive information removed:

GDPR Process

In support of the process, we will also be reviewing our mailing list and will be asking everyone to provide agreement that they wish to continue to receive our marketing emails. We have created a checklist to review our processes and our control and access details and to record monthly access checks to ensure there has been no inadvertent data breach or access. We will also be updating our Privacy Policy to reflect the changes.

Registration

As we control and process personal data we have registered with the ICO as the governing body in the UK.

GDPR Assistance

We are working with our clients who want our help with reviewing their preparation for GDPR Compliance. If you would like some help please give us a call on 0131 247 1435 for a free 20 minute consultation or book an appointment.