We offer two levels of assessment (sometimes known as a data compliance audit), ensuring optimal results whether you are looking to ensure general compliance, or have data-focused functions that require bespoke solutions.
We also organise IT security audits that run seamlessly alongside our compliance review packages. Delivered by our industry-leading IT partners, they offer a detailed report on the IT health of any organisation.

Understanding the data your organisation collects and holds

Being able to use personal data safely, securely, and legally is crucial for any business. Our goal is to help you maximise the value of the data assets you hold, whilst minimising your legal risk through reduced exposure to data breaches. With better understanding of the personal data you hold, and best practice in this area, you will be able to ensure compliance with the relevant legal obligations.

The impact of the General Data Protection Regulation

With the EU General Data Protection Regulation coming into force on 25 May 2018, the onus is shifting firmly onto businesses to demonstrate that they are proactively engaged in data protection management. Organisations that fail to comply with the GDPR’s statutory requirements can face fines of up to €20 million, or 4% of annual global group turnover, as well as lasting damage to their reputation.

https://frontierprivacy.com/wp-content/themes/salient/css/fonts/svg/basic_alarm.svg

It’s time to get proactive about demonstrating your data protection compliance!

general compliance

the Essentials assessment

Our Essentials review package provides a full health check and gap analysis of your organisation’s existing level of compliance with current data protection laws. The result of the review and gap analysis will be an in-depth, but accessible, report detailing your organisation’s level of compliance, the recommended steps to address any identified risks, and a Data Protection Toolkit outlining the recommended systems that will help your organisation take the steps to demonstrate better compliance.

Our compliance assessment process

Our team of expert auditors will work with your organisation to carry out an assessment and gap analysis on-site or by interview to examine:

  • your existing processes and procedures
  • notifications to data subjects
  • physical security processes
  • your training process
  • monitoring and CCTV compliance

We work with key personnel in your organisation to understand the nature of your data processing needs. With minimum disruption to your teams or day-to-day function, our assessment will identify the key areas of risk and non-compliance.

We analyse the findings of the audit, and prepare a commercially focused ‘traffic light’ report, which clearly highlights the areas of immediate risk, areas that could be improved on, and those that work well.

Analysis and insights

Our team will take the time to explain the findings of the report and address any questions or concerns you may have. We can also outline the next steps to take and help you identify any additional requirements as appropriate.

high volume data

the Essentials Plus assessment

Our Essentials Plus package is for those organisations that process large volumes of personal data, process sensitive personal data, or where analysing data is a core service of the business. It will review existing data management processes and assess any potential areas of data protection risk. The result of this assessment and gap analysis will be a Data Protection Toolkit containing bespoke policies/procedures, contract reviews, and a guide to data breaches. This package will ensure the development of a deeper insight into your organisation’s data processing activities, and provide the tools and frameworks to comply with data protection regulation in the future.

Our compliance assessment process

Our team of expert auditors will work with you to carry out an assessment and gap analysis on-site or by interview to examine:

  • existing processes and procedures
  • data mapping
  • international data transfers
  • key vendor contracts
  • notifications to data subjects
  • physical security processes
  • training process
  • monitoring and CCTV compliance

We work closely with key personnel in your organisation to understand the nature of your data processing needs. With minimum disruption to your teams or day-to-day function, our assessment will identify key areas of risk and non-compliance.

We analyse the findings of the assessment, and prepare a commercially focused ‘traffic light’ report, which clearly highlights the areas of immediate risk, areas that could be improved on, and those that work well.

Analysis and insights

We also provide you with a Data Protection Toolkit, containing key bespoke policies/procedures, a step-by-step guide to data breaches, and a review of key existing supplier contracts. This will cover the basics of your data processing activities, which will be required under the Regulation and provide you with the framework for data protection into the future.

Our team will take you through the findings of the report and address any concerns. We will advise you of next steps to take and help you identify any additional requirements that you should be aware of.

A tailored product

Our team works closely with key stakeholders in your organisation to highlight and explain the findings of the report, and provide targeted advice based on your unique data processing and management systems.

With the Essentials Plus review, we can tailor our tools and analysis to your particular needs and either review your existing policies and procedures, or provide you with new ones, depending on the nature of your organisation’s requirements. Coupled with a review of existing supplier contracts and agreements with third party data processors, this advanced review will ensure you are well on the path to compliance.