GDPR comes without an overarching standard like with PCI DSS or pre-defined auditable process. As such businesses have to define current compliance levels and come to conclusions themselves about the best way to achieve compliance.
Bytes have developed their GDPR Gap Analysis and GDPR Remediation services with specialist data consultancy partner Risk-X to aid in this process. Our services enable businesses to gain a clear picture of their current compliance and the processes they need to meet required data privacy standards.
Understand current data accuracy, erasure, correction capacity and storage profile
Document current basis for processing & design consent collection method
Legal counsel on best basis of processing, storage and data retention
Definition & design of PII replacement solutions & pseudonymisation to minimise GDPR impact
Privacy certification (ISO 29100) and identification of necessary Privacy Impact Assessments
On completing GDP Gap Analysis you will have the basis for a workable Privacy Information Management System (PIMS) and be able to address the 12 key points the Information Commissioner’s Office (ICO) recommends UK businesses should focus on to achieve compliance.
Extends work to the operational, physical, technical areas of your business, considering their implemented state. Consultants review how your data is protected and assist you in developing a detailed control and remediation plan.
GDPR Remediation will provide the following:
The GDPR Remediation process looks at all areas of the business in scope for privacy information and provides a baseline of all controls in place with guidance to allow you to remediate any failures.