0121 222 5630

Email Aristi Ltd Follow Aristi Ltd on Facebook Follow Aristi Ltd on Twitter Follow Aristi Ltd on LinkedIn

DATA SECURITY PROBLEMS.
MADE HISTORY.

You are here:

GDPR Services.

What is GDPR?

The General Data Protection Regulation (GDPR) is a new legal framework that applies in the UK from May 2018. Regardless of Brexit, The UK Government have confirmed that the decision to leave the EU will not affect the commencement of GDPR. If you currently comply with the UK Data Protection Act then most of your approach to compliance will remain valid for the GDPR, but there are some differences in the new regulation such as:

  • The definition of personal data has been extended to include online identifiers such as IP addresses and cookies;
  • Additional obligations on Data Controllers to ensure contracts with Data Processors comply with the GDPR;
  • Consent requires some form of clear affirmative action and must be verifiable;
  • New provisions for the protection of children’s personal data;
  • New rights for individuals;
  • Enhanced requirements for the implementation of comprehensive but proportionate governance measures to minimise the risk of breaches;
  • A duty on all organisations to report certain types of data breaches;
  • The Data Controller is responsible for and should be able to demonstrate compliance with the GDPR principles.
What can we do to help?

Our approach to GDPR is based on our experience of information security and helping ensure that good practice becomes part of ‘business as usual’. This requires senior management to recognise that personal information and ownership of the associated risks is their responsibility and not that of IT. The business owns the data, so the business needs to take accountability for data and manage those who access it. GDPR is about applying good practice and changing the behaviour of staff so that they instinctively do the right thing.

Our GDPR services include:

  • Awareness training for senior management and staff
  • Readiness assessments to establish your current level of compliance and identify what you need to do to comply
  • Implementation support to develop the required processes, procedures and documentation for compliance
  • Ongoing management and support to help maintain compliance
  • Virtual DPO support
  • Data protection advice line

GET
IN TOUCH

Please contact Aristi to discuss your requirements. Filling in the form below is the quickest way to get in touch with the relevant person at Aristi.

CONNECT
WITH US

Keep up-to-date with insights and info on all areas of Information Assurance, Information Security, Penetration Testing & Data Sharing from the award-winning consultants Aristi.

Latest Tweets

Some useful info from the ICO on home working and data security. https://t.co/yWfOWJNxS4
COVID-19 update https://t.co/wRDHY7IR6Q
https://t.co/oTtDMQOOL9

Subscribe to our Newsletter

Latest Blog Posts

  • Pulse Secure Vulnerability

    By Dave Buckley On 16th of April 2020 the CISA released an alert covering continued exploitation of pulse secure VPN’s post patching. This is an update to the original alert the CISA published back in January 2020 which advised organisations to immediately patch CVE-2019-11510. Pulse secure released patches for this vulnerability in April 2019 (SA44101). […]

    Written on Thursday, 07 May 2020
  • COVID-19 Update

    Aristi has made preparations to protect our operations from disruptions caused by the Coronavirus (COVID-19) outbreak. Our aim as always is to provide an excellent service to our customers, and we will continue to do so through this uncertain time. We will be monitoring the situation closely and following the latest government advice with regards […]

    Written on Tuesday, 14 April 2020
  • Testing as a Service

    Aristi has developed an innovative new cyber security service to give businesses and public sector organisations reassurance that they are doing all they can to defend against hackers. Many organisations conduct annual IT Health Checks to identify security weaknesses in their IT systems. However, a cyber-attack can occur at any time resulting in significant business […]

    Written on Monday, 24 February 2020