business man using modern tablet compute

Data Protection Services

We can offer GDPR/Data protection compliance and ongoing support from as little as 3 hours per month. Keeping you up to date with changes in legislation, making sure you have all the required documents in place, dealing with access requests, staff training and liaising with clients/customers and the ICO are just a few of the ways we can support businesses. Our qualified and experienced privacy professionals will take you through the step-by-step process of ensuring you have all the documents, processes and procedures in place.

Substantial fines are available to the Information Commissioners Office (ICO) for

non-compliance. Staff training is also mandatory under the GDPR as all employees

are required to have an understanding of data protection rules, understand and

comply with the documents, know how to deal with queries from data subjects

e.g. customers, understand how to recognise an access request, data breach etc.

We can offer remote or in-house training and this can form part of an overall package

if required. Together with our partners we can also provide government backed

certifications to demonstrate compliance with data protection and information

security, as well as cloud security, cyber security support, back-up as a service and

secure cloud hosting.

 

Home Working

With home working set to continue, it is critical that businesses have their data protection

systems in place and are fully compliant. Data privacy has never been more important.

Legislation has put individuals firmly in control of their own data, and businesses are required to ensure they put into place documents, systems and processes that protect individuals’ data and enable them to exercise their statutory rights over their personal information. 

Ancillary Services - our carefully selected partners can offer technical solutions to keep your data safe and secure. Services include secure cloud hosting and backup, supply of laptops and peripherals, cyber security, penetration testing, and important certifications such as Cyber Essentials, Cyber Essentials Plus, IASME Governance and ISO 27001.

We have noted that very many organisations are still not fully compliant, including those dealing with special category data

(previously known as sensitive data). The rules around this are understandably strict, and the implications of getting this wrong,

or having a data breach, can lead not only to a heavy fine but to irreversible reputational damage. There are a number of

documents  and processes that organisations are required to have in place in order to demonstrate compliance.

It is important also to note that if you do business or transfer data to the U.S.A or other countries outside of the EEA (for example

using U.S.A. based software services) the recent Schrems II court case concerning Privacy Shield and Standard Contractual Clauses may well affect you. Read more about this in our Blog posts here 

Data Protection Officer Services

We can also offer Data Protection Officer (DPO) Services – some organisations are required by law to appoint a DPO; for example, those processing large volumes of special categories of data as defined under Article 9 of the GDPR. See our dedicated DPO page for more information 

Woman working on a laptop in her home.jpg
Security theme with a man on blurred city background.jpg
What Our Clients Say statement on paper note pad. Office desk with electronic devices and

“Nick has supported us through a period of rapid growth in clients, people, locations, products and systems.  As for so many firms, data is at the heart of our legal work and we cannot afford to be cavalier about compliance or security. He has guided us with the necessary expertise but it is his real life input that has enabled us to address data priorities in a pragmatic and effective manner. His guidance has enabled us to achieve Cyber Essentials and IASME certification as well as to navigate some of the conflicting dynamics between competing data rights. He is also a joy to work with and I recommend him wholeheartedly.” Johnny Nichols

Chief Operating Officer, Keller Lenkner UK Ltd

"Nick has been a valued advisor since operations began at our company. In addition to helping us achieve the full certification we required, he provides continuing support. Dealing with sensitive data, our business has constantly changing needs. Nick is professional, responsive, friendly, and accommodating. Nick and his team have an understanding of and eye for commercial consequences, as well as a robust and up to date knowledge of data security and privacy regulations. This practical approach is invaluable to any business, ensuring compliance as well as good practice, both of which are increasingly important to clients and regulatory bodies alike."  Vinod Kathuria, Consultant Orthopaedic Surgeon and Clinical Director, Tula Medical Experts

"We used Nick's services in 2018 to ensure we were GDPR-compliant. He helped us navigate the mass of regulations and, in the process, highlighted some other aspects of our procedures and statements which could be improved. We were very grateful for his assistance and wouldn't hesitate to use him again or recommend him to others." Brian Quinn, Penny Post.

 

“Nick completed my GDPR documents earlier in 2020, he was very professional, honest and knowledgeable. I highly recommend his service to ensure all your documents are up to date as this is a necessity in a fast moving technology based world.”

- Doctor Leah Austin - General Practitioner