Make a free enquiry – Call now 0151 453 6705

or email [email protected]

How to Get on Top of Your Data Protection and InfoSec Requirements

How to Get on Top of Your Data Protection and InfoSec Requirements

  1. Manage expectations – GDPR ‘compliance’ is a matter of constant review, adoption of policies and adaption of processes. Plan, develop and sustain.
  2. Continued awareness and training for staff.
  3. Update your privacy policy, consent capture and recording.
  4. Review whether you require a Data Protection Officer.
  5. Consider certification standards such as ISO 9000, 27000 or BSI accreditations.
  6. Review and incorporate into your risk management framework in line with GDPR requirements.
  7. Review your systems of how to deal with enquiries, including SARs – do they require updating to account for the new GDPR requirements? Can your business and staff adapt to fulfilling these obligations?
  8. Align your governance with your policy statements. Look at your “opt in” privacy management and review in the light of existing policy and governance.
  9. Look at your suppliers and other third-party interactions that need controls in place or contracts changing.
  10. Establish a control regime for unstructured data. Look at ownership and action.
  11. Review, test and ensure information security policy for things like network administration. If you have an InfoSec department, they need to review the auditing and housekeeping policies, remove unauthorised papers, electronic copies from network shares and desk drawers; adhere to IT security, access and data retention policies, etc.
  12. Identify physical location of all cloud service hosts. Review the contractual arrangements, with particular attention to those hosted in third countries.

Contact our Data Protection and GDPR Solicitors Liverpool, Wirral, Merseyside and Across England & Wales

For more data protection and GDPR advice and support, contact our specialist team on 0151 453 6705 or complete our online enquiry form for a free consultation.

Make a free enquiry, call now

0151 453 6705

    I understand that by submitting my query to you, my personal data (name, email address and contact number) will be processed by you in order to contact me and assist me with my query. I confirm I have read and understood the Privacy Notice and I consent to you processing my data for the purpose of contacting me to assist me with my query.

    Aaron Pearson

    Aaron Pearson
    View Profile

    What our clients say

    Daniel quickly defended our position and forced the other side to back down. We were very pleased with the manner of Three Graces Legal...
    Daniel, Aaron and their team have vast knowledge and have always offered helpful advice across the range of services I’ve instructed them for...
    Read more

    How can we help you?

    To find how our friendly and knowledgeable solicitors can help you, contact us today.

    gdpr tgl
    ISO