Who is it for?

Things have been a bit different for us all over the last year or so, and brought with them a few changes in the way we work and perhaps the way we handle personal data. Data privacy and GDPR haven’t gone away though, and this is a great time to check that everything in your business is working as it should, with data privacy just as with everything else! Any organisation that handles personal information needs to comply with GDPR, pandemic or no pandemic. If you don’t, you could face a fine or a range of other penalties. Our quick healthcheck is suitable for any business that needs to know how well it’s complying with the requirements of GDPR and other applicable data privacy regulation. It’s a sensible starting point for any business that: • Is just going back to normal working or is readjusting to new ways of working post-Lockdown • Hasn’t yet done any work on data protection and privacy - it will help you work out what needs to be done and where to start. • Hasn’t reviewed its existing practices against GDPR - it will show you what needs to be updated. • Already has data privacy covered, but would like a an objective view about whether they’re headed in the right direction and whether it faces any new risks due to new ways of working. The healthcheck is not an in-depth audit; it’s a quick way of flagging up any key areas that might need more attention or investigation.

What is included?

• Initial discussion to confirm scope, process and timings • Review of any existing data privacy policies, procedures and other relevant documentation • Discussion (by phone/online or, if applicable, in person) with key individuals within your business • Production of a brief, simple report giving you a clear opinion on your level of compliance with data privacy law, highlighting areas of vulnerability ordered by risk level and giving recommended actions and suggested time frames. • Follow up discussion to ensure you understand the findings and recommendations • Any email or phone calls required while the work is under way • 10% discount on any further services purchased within 3 months of completion

What is not included?

• updating of any existing documents • creation of policies or other documentation • Remedial work to fill any gaps highlighted by the healthcheck • site visits or physical inspections (unless this is necessary to interview key staff or present findings) • Interviews with or detailed inpections of any third party/outsource firms you may use

What will I have at the end of it?

You’ll have a clear, objective picture of your overall compliance, and risk-based suggestions that you can use either as reassurance or to plan future work on data privacy.