With just over a month to go we thought we'd publish what we are doing to get Graphite Web Solutions ready for the General Data Protection Regulations (GDPR) which comes into effect on 25 May 2018. We have reviewed the process, watched many webinars, reviewed websites and read many documents and believe we have developed documentation and a process to ensure we comply.
We have created a GDPR Policy document which is our interpretation of the rules and is based upon a free Policy template provided for free by Vinci Works which we found very useful. Here is a copy of our policy:
In order to comply with the regulations and to explain to the owners of the information we hold, we have created a Process document which details what we hold, why and what we do with the information. Here is a copy of the process with sensitive information removed:
In support of the process, we will also be reviewing our mailing list and will be asking everyone to provide agreement that they wish to continue to receive our marketing emails. We have created a checklist to review our processes and our control and access details and to record monthly access checks to ensure there has been no inadvertent data breach or access. We will also be updating our Privacy Policy to reflect the changes.
As we control and process personal data we have registered with the ICO as the governing body in the UK.
We are working with our clients who want our help with reviewing their preparation for GDPR Compliance. If you would like some help please give us a call on 0131 247 1435 for a free 20 minute consultation or book an appointment.
Leave Comments