With a matter of weeks to go before the General Data Protection Regulation (GDPR) comes into force many businesses that we speak to are still confused about the steps they need to take to make sure they are GDPR compliant.

The internet is awash with checklists, summaries, guides and one-size-fits-all ‘solutions’. But the truth is GDPR isn’t straightforward and off-the-shelf privacy notices are not effective quick-fixes.

Before 25 May 2018 every organisation is going to need to put some time, or resource, aside to:

  1. Map the personal data they hold and identify the legal bases on which that data is being processed.
  2. Review data policies and procedures relating to customers, clients, contacts and employees. This doesn’t just mean tweaking your website privacy notice and providing ‘opt-in’ boxes. You will need clear and specific data privacy and retention policies, tailored to your organisation.
  3. Train all staff who process personal data to ensure they are adhering to your data privacy procedures and know what to do should a breach occur.

We have produced a health check document to help you to assess your GDPR readiness and to provide some no-nonsense advice on the key steps you should now be taking.

If you would like a copy of our GDPR health check document, email enquiry@beswicks.com

Our GDPR experts are also on hand to provide:

  • A full suite of GDPR compliant policies, drawn up by qualified lawyers, bespoke to the needs of your organisation, including privacy policy, privacy notice, employee privacy notice, retention policy, information asset register template and response procedure for subject access requests.
  • On-site briefings and training sessions for your managers.

For a comprehensive GDPR solution provided by specialist lawyers, email enquiry@beswicks.com or phone 01782 205000 to discuss your specific needs.