On 25th May 2018 the new General Data Protection Regulation (GDPR) becomes effective. GDPR replaces the current Data Protection Act (DPA) and represents one of the most significant regulatory changes for several years. With penalties of 20m Euros, or 4% of global turnover, it is important for all firms to mitigate the risk of such hefty losses by ensuring they are adequately prepared.
With so much personal data now being collected and used, GDPR has a broader scope than the DPA, and more rights for individuals. The extra requirements of GDPR, such as Subject Access Requests and the Right to Portability, demand organisational wide change. Firms may be faced with both capability and capacity issues to ensure all areas affected are transformed. Marketing, Customer Service, IT and HR are all impacted by GDPR and must deal with technical and behavioural changes. Organisations will need to establish new controls; including technical architecture, systems, policies, processes, training and monitoring.
RFS can provide the required specialists on a flexible interim basis to help you make your organisation GDPR ready. Our associates include experts in the following areas:
• Data & information audits
• GAP analysis
• Data protection & security
• Financial crime, KYC & AML
• Business model design
• Project Management (Prince2)
• Business improvement (Six Sigma)
• Change & transformation
In addition, RFS can provide fully managed resource to carry out large scale data remediation exercises; such as cleansing, improvement, validation, merging and migration.
To find out more about how RFS can support your business prepare for GDPR please get in touch.Contact us