020 7820 7111

Repairs & Support
020 7820 7121

GDPR Business Analysis

Strengthen Your Company

In May 2018 the General Data Protection Regulation (GDPR) came into effect across the EU. The GDPR standardises data protection law across all 28 EU countries and imposes strict new rules on controlling and processing personally identifiable information (PII).

The full text of the GDPR contains 99 articles running to over 200 pages, and it can be a challenge cutting through it all to identify the practical steps for your company to stay compliant. Many organisations rushed to opt in data, quickly checked processes and updated their legal documentation but failed to look at the bigger picture. As a company evolves, through growth, diversification or economic changes these quick fixes might not work for long term strategies.

Trams will be able to independently review your workplace and identify, prioritise and offer guidance on how to deal with the key gaps and risks that you will need to address.

The three main themes of the GDPR

Transparency - GDPR expands the obligations of the Data Controller and demands that organisations are clear to an individual as to what data is collected (and held), how it is processed and the individual’s rights under the GDPR. And that this information is easily accessible.

Data Subject Rights – GDPR introduces a number of new rights (erasure, portability) and strengthens existing rights around Fair Processing, Subject Access Requests (SAR), Rectification of inaccurate records, rules around profiling and automated decisions, and other adjustments to rights.

Accountability – Under the GDPR Data Controllers are required to have appropriate systems and controls in place to manage data security, to allow for easy data management and care of the data and to manage the risks around holding the data.

This would include (for example) appropriate IT Security, a suitable set of policies and procedures including those for managing the key aspects of the GDPR and a comprehensive record of the data held by the Data Controller.

Keep Your Company Safe

Putting in measures provided by Trams will demonstrate a plan towards compliance. The GDPR has adopted a risk-based approach to legislation called Privacy by Design – meaning an organisation does not need to have suffered a data breach or other incident – but simply be prosecuted and fined for not ensuring that the most appropriate technical and organisational measures are in place to protect personal information.

Request more information from a member of our team and they can update you with more information on the GDPR Consultation.

When you provide the information above, we will use it to process your request as described in our Privacy Policy.