Data Protection Services
We can offer GDPR/Data protection compliance and ongoing support from as little as 3 hours per month. Keeping you up to date with changes in legislation, making sure you have all the required documents in place, dealing with access requests, staff training and liaising with clients/customers and the ICO are just a few of the ways we can support businesses. Our qualified and experienced privacy professionals will take you through the step-by-step process of ensuring you have all the documents, processes and procedures in place.
Substantial fines are available to the Information Commissioners Office (ICO) for
non-compliance. Staff training is also mandatory under the GDPR as all employees
are required to have an understanding of data protection rules, understand and
comply with the documents, know how to deal with queries from data subjects
e.g. customers, understand how to recognise an access request, data breach etc.
We can offer remote or in-house training and this can form part of an overall package
if required. Together with our partners we can also provide government backed
certifications to demonstrate compliance with data protection and information
security, as well as cloud security, cyber security support, back-up as a service and
secure cloud hosting.
With home working set to continue, it is critical that businesses have their data protection
systems in place and are fully compliant. Data privacy has never been more important.
Legislation has put individuals firmly in control of their own data, and businesses are required to ensure they put into place documents, systems and processes that protect individuals’ data and enable them to exercise their statutory rights over their personal information.
Ancillary Services - our carefully selected partners can offer technical solutions to keep your data safe and secure. Services include secure cloud hosting and backup, supply of laptops and peripherals, cyber security, penetration testing, and important certifications such as Cyber Essentials, Cyber Essentials Plus, IASME Governance and ISO 27001.
We have noted that very many organisations are still not fully compliant, including those dealing with special category data
(previously known as sensitive data). The rules around this are understandably strict, and the implications of getting this wrong,
or having a data breach, can lead not only to a heavy fine but to irreversible reputational damage. There are a number of
documents and processes that organisations are required to have in place in order to demonstrate compliance.
It is important also to note that if you do business or transfer data to the U.S.A or other countries outside of the EEA (for example
using U.S.A. based software services) the recent Schrems II court case concerning Privacy Shield and Standard Contractual Clauses may well affect you. Read more about this in our Blog posts here
Data Protection Officer Services
We can also offer Data Protection Officer (DPO) Services – some organisations are required by law to appoint a DPO; for example, those processing large volumes of special categories of data as defined under Article 9 of the GDPR. See our dedicated DPO page for more information
“Nick has supported us through a period of rapid growth in clients, people, locations, products and systems. As for so many firms, data is at the heart of our legal work and we cannot afford to be cavalier about compliance or security. He has guided us with the necessary expertise but it is his real life input that has enabled us to address data priorities in a pragmatic and effective manner. His guidance has enabled us to achieve Cyber Essentials and IASME certification as well as to navigate some of the conflicting dynamics between competing data rights. He is also a joy to work with and I recommend him wholeheartedly.” Johnny Nichols
Chief Operating Officer, Keller Lenkner UK Ltd
"Nick has been a valued advisor since operations began at our company. In addition to helping us achieve the full certification we required, he provides continuing support. Dealing with sensitive data, our business has constantly changing needs. Nick is professional, responsive, friendly, and accommodating. Nick and his team have an understanding of and eye for commercial consequences, as well as a robust and up to date knowledge of data security and privacy regulations. This practical approach is invaluable to any business, ensuring compliance as well as good practice, both of which are increasingly important to clients and regulatory bodies alike." Vinod Kathuria, Consultant Orthopaedic Surgeon and Clinical Director, Tula Medical Experts
"Nick's support and knowledge has been an invaluable asset in helping me set up my business providing me with security and peace of mind that I am meeting all the required data protection regulations. Having tried to 'manage' with templates it became apparent that these were not fit for our purpose. He has been incredibly responsive, and helped us in a short time frame which has been incredibly appreciated. His honesty and expertise is crucial to help start-ups like us to navigate this challenging world of data security. I will continue to work with him as our business expands and highly recommend anyone else to do so." Doctor Elizabeth Leek, The Women's Wellbeing Clinic
"We used Nick's services in 2018 to ensure we were GDPR-compliant. He helped us navigate the mass of regulations and, in the process, highlighted some other aspects of our procedures and statements which could be improved. We were very grateful for his assistance and wouldn't hesitate to use him again or recommend him to others." Brian Quinn, Penny Post.
“Nick completed my GDPR documents earlier in 2020, he was very professional, honest and knowledgeable. I highly recommend his service to ensure all your documents are up to date as this is a necessity in a fast moving technology based world.”
- Doctor Leah Austin - General Practitioner