There is a lot of fuss around the General Data Protection Regulations (GDPR), and rightly so. 

The GDPR replace the current data protection legislation across Europe on 25 May 2018. The fines alone are enough to send any business owner into a frenzy. But many are just scared because they don’t understand the exact changes that need to take place or how it will impact their business. The full name of the legislation, General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) doesn’t shed much light on how to act, so we have collaborated with legal, cyber security and management system specialists to offer the practical assistance you need, delivered as clearly as possible without resorting to ‘legalese’.

 

GDPR CHECKLISTS

 
 
 
 
 
 

A service to suit your needs

We understand that different organisations have different goals when it comes to data protection. We assume that if you've contacted us, then you have a desire to be legally compliant.

You may require an audit to highlight areas for improvement that your staff can use to develop the systems and documentation required to meet your legal obligations. Or perhaps you don't have enough time to carry out the necessary work, so you'd like us to assist you in putting the measures in place before 25 May. If you want your organisation to meet the data protection standard approved by UK parliament, we can assist you with that too.

Whatever your GDPR preparation requirements, we can help you to meet them.

Why use us?

Blue Shadow Marketing has been certified as a GDPR Fundamentals Practitioner, which means that our staff have undertaken extensive GDPR training and that we meet the GDPR Fundamentals management standard. We are among a select number of independent consultants that have demonstrated an expertise in information security and data protection. We also have the significant benefit on being part of a team that includes cyber security specialists, legal experts and marketers. Learn more about GDPR Fundamentals here.

 
 

8 GOOD REASONS TO MEET THE GDPR FUNDAMENTALS STANDARD

  1. The GDPR Fundamentals standard is actively monitored by the Department of Digital, Culture, Media and Sport (DCMS) and any updates to GDPR are fed directly into the GDPR Fundamentals standard.

  2. GDPR Fundamentals certificate holders will be directly updated regarding any changes to GDPR that may affect them. The flow of information stems from DCMS directly to GDPR Fundamentals, then directly to you. This should assure you that advice is reaching you undiluted from the top down and to sort the fact from the fiction in an arena of conflicting advice.

  3. GDPR Fundamentals isn’t just one person or one organisation. It is a collaborative network of accredited practitioners who are guided by a team of legal, business management control, cyber security and marketing experts, some of whom regularly influence government policy. They are all available to offer advice to organisations that have achieved the GDPR Fundamentals standard and have done just this across the globe.

  4. Trust is an important value for people when they make purchases and knowing that you secure the privacy of their data is critical. Meeting the GDPR Fundamentals standard is likely to raise your organisation above the competition when it comes to promoting trust in your brand.

  5. Your organisation probably sits within a supply chain of data processing. As your suppliers and clients prepare for GDPR, they will be asking you to evidence your organisation’s compliance. This can be easily provided if you tell them you meet the GDPR Fundamentals standard.

  6. Some public sector tenders are now asking bidders to provide evidence of GDPR compliance and this is a trend that is likely to grow. The GDPR Fundamentals certificate is a recognised standard for data protection compliance and is a straightforward way of evidencing compliance in your tender bid.

  7. The ICO expect data controllers to ‘demonstrate compliance’ with the GDPR. This means you need to evidence the data protection systems and processes that are already in place. It’s no good waiting until you’re in breach of the Regulations and then hiring your lawyer to get you off the hook; there’s no excuse for not being prepared.

  8. Meeting the GDPR Fundamentals standard means that your organisation has been independently audited by a third party. This is evidence to ‘demonstrate compliance’ and organisations that meet the standard are likely to be met with more lenience from the ICO than organisations without.

 

PRICE PLANS

GDPR Audit: Micro business

All businesses in the UK need to comply, no matter how large or small

£250
+ VAT


Eligibility: Less than 10 employees and a turnover or balance sheet total of under €2M


A detailed audit examining the 15 areas of GDPR requirements


A full report exploring the audit results, highlighting gaps in compliance and recommending actions and the budget required to implement them


GDPR Audit: Small business

If the Data Protection Act applied to your business, so will the GDPR

£350
+ VAT


Eligibility: Between 10 and 50 employees and a turnover or balance sheet total of between €2M and €10M


A detailed audit examining the 15 areas of GDPR requirements


A full report exploring the audit results, highlighting gaps in compliance and recommending actions and the budget required to implement them


GDPR Audit: Medium business

Don't run the risk of attracting huge penalties for a data breach

£500
+ VAT


Eligibility: Between 50 and 250 employees and a turnover of between €10 and €50M or a balance sheet total between €10M and €43M


A detailed audit examining the 15 areas of GDPR requirements


A full report exploring the audit results, highlighting gaps in compliance and recommending actions and the budget required to implement them


 
 

GDPR TRAINING

 
 
 
 
 

GDPR BLOGS