top of page

GDPR Specialists

Yes, If you collect information about individuals for any reason other than your own personal, family or household purposes, you need to comply. This includes information on customers, staff and suppliers.
 
You will not need to comply if you only use the information for your own personal, family or household purposes – e.g., personal social media activity, private letters and emails, or use of your own household gadgets.

1

Does GDPR apply to my business?

Cahoots.jpeg

We can work with you to help your business to become compliant either through consultations, staff training or working through one of our GDPR compliance bundles. This can be done by a nominated capable person within your business following our guidance below, or outsourced to us completely.

​

  • Register with the ICO .

  • Buy GDPR document bundle.

  • Make a note of all of the types of data you process by department.

  • Make sure you know if you are a Processor, Controller, or both.

  • Work through the GDPR bundle by impact assessing all of this data to ensure you are relying of the correct basis for processing.

  • Send out processor agreements to any 3rd party who accesses this data.

  • Have a clear process in pace for notifying your DPO and ICO of any breaches.

​
​
1 Peace of mind.
2 Save your business time & money.
3 Have someone to contact if you need support going forward.
​
​

Step By Step Compliance...

GDPR isn't something you do once, it is an ongoing part of your business from 25th May- get it right first time, and every time!

Businesses evolve, grow, move and change over the period of a year. Therefore, it is vital that your GDPR status is reviewed at least once very twelve months. If your company is experiencing growth with an increase of staff of more than 10% then more regular audits are recommended. Our audit service ensures you on track and compliant.

​

 We will check that:

  • GDPR is still implemented in your business and has not been forgotten

  • Processing remains compliant

  • New processing has been properly documented

  • Your Data Asset Register is up to date

  • Your Data Flow Map is relevant 

  • Your GDPR risk register is accurate and is able to demonstrate reduction is data processing risk on a regular basis

  • GDPR Training is carried and your trying register is accurate and up to date

 

We offer a free consultation to discuss your GDPR needs.

© 2022 by Cahoots.

DISCLAIMER: It is your responsibility to ensure that your documents and materials meet any regulatory, legal or statutory requirements as applicable to your business. We take every reasonable measure to ensure that our documents are compliant and up-to-date; however, the content is provided as guidance only and does not constitute legal advice or denote full compliance

  • LinkedIn - Black Circle
  • Facebook - Black Circle
  • Twitter - Black Circle
bottom of page