The General Data Protection Regulation (EU) 2016/679 ("GDPR") is a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA). It also addresses the export of personal data outside the EU and EEA areas. The GDPR aims primarily to give control to individuals over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.
- Learn what's changed since the data protection act
- Ensure you are ready for the new legislation
With over 40 years in the assessment industry, the Gabriel Registrar has developed a pragmatic solution to help organisations prepare for the incoming GDPR legislation. Our Compliance Check can be carried out independently in a half-day visit or by integrating into a future ISO audit.
The GDPR deadline is 25th May 2018, with organisations facing fines of up to €20m or 4% of annual turnover if they are not compliant. Gabriel Registrar has therefore developed "GDPR Compliance Check" which is completed by one of our experienced auditors on-site in a just a few hours. The check highlights the areas of non-conformance and also provides these additional benefits:
- Strengthen customer trust
- Improve internal efficiency
- Stand out from competitors
- Impress prospective clients
- Avoid reputational damage
- Mitigate against costly fines
STEP 1 - PREPARATION
Prior to the Compliance Check, we recommend our online "GDPR knowledge and Awareness Course" is completed. This course is included free of charge for a single learner with the purchase of each Compliance Check.
STEP 2 - COMPLIANCE CHECK
You'll be taken through the key elements and changes, as well as the Action Plan we have designed to help interpret the GDPR legislation into straightforward actions.
Our philosophy is to always add value, so we'll share best practice on how to raise awareness internally and will also take you through the Privacy Impact Assessment - a major part of GDPR compliance.
STEP 3 - ACTION REPORT
After the visit, you will be provided with a formal report on the actions you need to take. Your job will then be to plan how you will deal with gaps between what you do already, and what GDPR expects.
You may also decide to implement changes to processes and responsibilities into your management system.
STEP 4 - RAISE AWARENESS
To be fully compliant and protect your organisation from Legal action, all stakeholders should be aware of GDPR and their responsibilities.
This can be efficiently and effectively delivered through our Training programmes
Following completion, each learner will confirm their understanding of the course content and a certificate will be issued (we recommend a copy is held on file by your organisation).