Data Protection Experts!
What is GDPR?
The General Data Protection Regulation comes into effect on 25th May 2018 and replaces the 1995 EU Data Protection Directive.
GDPR imposes strict new rules on businesses and organisations as to how they should control and protect the personal data and privacy of EU citizens.
Roles and Responsibilities
As part of this new regulation two main roles are required, that of the Data controller and the Data Protection Officer.
The key responsibility of a Data Controller is to be accountable, i.e., to take actions in line with GDPR, and to be able to explain the compliance with GDPR to data subjects and the Supervisory Authority, as and when required.
The key responsibility of the Data Protection Officer is to ensure compliance with GDPR and advise company management and staff on the right measures to take.
How can OpenAIR help us to comply?
Our General Data Protection Regulation (GDPR) Data Protection Officer Service is designed to fulfil the responsibilities of the Data Protection Officer (DPO) role on an out sourced basis, supporting customers in maintaining effective GDPR compliance.
Key features of the service are:
- Consultancy to ensure that the Data Controller and the DPO are both fully aware of the data that is being held and processed.
- Technical assistance to ensure that any risks to the data are identified and that an action plan for the mitigation or elimination of risk is agreed.
- Support to ensure that the Data Controller is able to deliver and monitor the action plan as required to meet effective GDPR compliance.
- Support and assistance to customers to ensure the correct handling of Subject Access Requests, a key part of the new regulation, which requires customers to share the data they hold about individuals with the person concerned at their request.
Our DPO service is designed to provide maximum flexibility for customers, allowing you to maintain full control of your processes and systems. For further information please get in contact with us.