It’s Time for GDPR Compliance – Are You Ready?
2018 is upon us, and for a large number of companies across the land, the first few months will be dominated in no small part by the General Data Protection Regulation (GDPR), and the 25th May deadline that looms large on the horizon.
Of course, many businesses will have already completed their internal compliance work, turning their attention now to their third-party suppliers, to ensure that they too are taking the necessary steps to adhere to the new rules.
As a trusted digital partner, UpriseVSI is here and ready to help.
From May 25th, 2018 your business will need to have in place documented processing activities, which will include your website and web applications. In addition, that documentation will need to be maintained and may be required by the UK Information Commissioner’s Office (ICO) on request.
There are templates available from the ICO, which can be used by yourself (Data Controller) and your suppliers such as upriseVSI (Data Processors).
In addition, we have been working with our legal partners and major clients to develop a Data Processing Report to suit your needs.
How do I get my Data Processing Report?
There’s a four-step process to get your Data Processing Report ready for the 25th May
1. Initial Processor Report assessment
We will create an initial report for your website and application working together to identify the data processing activities.
2. Get advice from your legal team or corporate solicitors
As part of your ongoing GDPR compliance programme, you will need to present this to your legal team or corporate solicitors for input and approval that it meets your own GDPR requirements.
3. Update your website and processing activities
Any remedial work that’s identified as needing to be undertaken, to ensure all data processing activities on your web application(s) is GDPR compliant, needs to be actioned as a priority.
4. Update the Data Processor Report
After completing any development work necessary for compliance with data processing activities, the Data Processing Report will need to be updated. The report will need to be updated following every website or application development thereafter to maintain compliance with the documentation requirements of the GDPR.
We’re now less than 5 months from the deadline, so the time to act really is upon us all. Don’t delay, contact us at upriseVSI to ask about your Data Processing Report assessment today.
Digital Marketing, GDPR, Website Design & Development