Data protection regulations demand that some situations receive a rapid response. And, there are timescales to be obeyed. Failure to comply with these only compounds the impact (and the potential penalties). We’ll provide guidance for dealing with the situation and support in establishing the appropriate response.
We conduct or directly support, at senior level, the tasks expected of a Data Protection Officer / Lead. You sometimes hear of similar services being described as a ‘virtual DPO’. In plain terms, our Virtual Data Protection Team service would see us adopting a data protection management support role in your organisation.
If your organisation would like expert input on a regular basis, we offer the option of Retained Support on a rolling monthly contracted basis. We’ll be on hand for general questions, reviews of documents or providing advice on personal data projects or issues. Our Retained Support Packages are intended to provide flexible input, ‘on tap’ at whichever level of involvement or frequency you need.
Sometimes, you just need help to tackle one particular task or challenge. Got a question about a data processing activity? Need a review of a document? We provide Expert Hours, tracked against an upfront payment, giving you flexibility based around your need.
Knowing exactly what personal data you are processing is the keystone of your data protection controls. We work with you to figure out what personal data you are processing and document it clearly. Clearly mapped data acts as a dashboard that gives you visibility of what you have it, how much of it there is, where it is stored and who can see or share it. This visibility helps you to understand the potential risk level of different data types, and supports your organisation’s approach to retention and disposal of data.
We conduct a review of your privacy and data protection policies, controls and procedures and discuss their ‘real world’ application with you. From this, we can identify any gaps that might exist to produce tailored documents that accurately reflect the way that your organisation protects personal data.
No two organisations manage personal data in the same way. So, we’ll write a tailored Privacy Policy for your organisation or website. Critically, the information that it sets out will be specific to the unique operation of your organisation.
We review your current processes and controls to ascertain how they are applied within your organisation. Compliance gaps or risks are identified and a recommended course of action provided in a written Implementation Plan.
When planning new software, systems or project involving the processing of personal data you might need to conduct a DPIA to comply with the GDPR. We’ll review your privacy & data protection policies and controls, and analyse their application versus your planned data processing activity. Then we’ll produce documents that accurately reflect the way that your organisation will safeguard the personal data involved.
Considering changing or reviewing a system or application? We’ll help you to get more from your data collection resources. We work with organisations to make their data work better, harder and more efficiently. This often includes helping to identify appropriate technical solutions to suit organisation budgets and specifications.
Our expertise in data protection, collection, planning and management is invaluable to help you ensure your organisation is not only compliant, but has a data handling process which is secure, robust, optimised, and making the best use of the data you handle.
If you supply goods and services to the NHS that process patient data, you will be subject to completing NHS Digital’s annual Data Security and Protection Toolkit. We will review, draft or format your key control documents as required for the NHS Toolkit.
We work hand-in-hand with your team, through auditing, policy/report writing, risk assessments, scheduling and co-ordinating, to help you to obtain or maintain ISO certification.
Data leaks are a serious problem for organisations and individuals. In this day and age, individuals freely provide personal information to organisations, therefore a data leak can have a significant impact on both the company and the person. They often involve the exposure of personal data (such as name, address and financial details), with additional damage to the company or organisation in terms of potential financial loss and reputational damage.
Email info@dbxuk.com
Tel 01865 346080
Get Data Protection Services t/a Databasix
is a registered company in England & Wales.
Registration No. 15292208
Unit B Oakwood
Oakfield Industrial Estate
Eynsham
Witney
OX29 4TH