General Data Protection Regulation.

Find out how we can help you below.

The General Data Protection Regulation (GDPR) is the toughest privacy and security law in the world. Drafted and passed by the European Union (EU), it imposes obligations onto organisations anywhere they collect Personally Identifiable Information (PII), also refered to as Personal Data, related to EU residents. The regulation became effective on May 25, 2018. The GDPR imposes harsh fines against those who breach its privacy and security standards, with penalties reaching into millions of euros.

Your GDPR Compliance gateway to success.

We advise and help our client understand the importance of the General Data Protection Regulation GDPR compliance, the risks involved and help devise a remediation plan. This include providing advisory support to ensure GDPR sustainability and compliance.

As a qualified and experienced GDPR consultant, Sohrab can help you achieve and maintain compliance and sustainability with a professional and cost-effective strategy.

He undertakes independent audit of your compliance environment with the objective to assess the current state of the regulation's readiness across your organisation's processes against the requirements as defined by the GDPR. The project approach is based on three key phases:

Perform GDPR gap assessment and data mapping.

Develop remediation strategy and action plan.

Implementation and sustainability.

The gap assessments have been designed to work around your schedule with the aim to minimise disruption to your employees.

Upon completion of the gap assessment, you will be provided with a compliance report that gives you detailed information on what needs to be actioned, prioritised and the steps that you should take to remedy any gaps. The report will contain recommendations as well as an activity list, on steps needed to ensure compliance.

Once the findings have been reviewed and agreed, implementation will commence on all agreed recommendations from the remediation and action plan.

Let Sohrab help you achieve and maintain GDPR compliance.

What are the data protection principles? Find out below.

GDPR Sustainability.

In summary, GDPR implementation is not a one-off compliance action in terms of technology, but about strategic governance and business process choices that have longer-term impact.

Some of our key projects.

What are the data protection principles?

If you process personal data, you have to do so according to seven protection and accountability principles outlined in Article 5.1-2 of the regulation:

Lawfulness, fairness and transparency

Personal data must be processed lawfully, fairly, and in a transparent manner in relation to data subject.

Purpose limitation

Personal data must be collected for specific, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes.

Data minimisation

Personal data must be adequate, relevant and limited to what is necessary in relation to the purpose for which it is processed.

Accuracy

Accurate and, where necessary, kept up to date. Every reasonable step must be taken to ensure that personal data that are inaccurate.

Storage limitation

Personal data should be retained only for as long as necessary and kept in a form which permits identification of data subjects for no longer than is necessary.

Integrity and confidentiality (security)

Personal data must be processed in an appropriate manner to maintain and ensure security.

Accountability

The controller shall be responsible for, and be able to demonstrate compliance with, paragraph 1 (‘accountability’).

Source: The Information Commissioner's Office (ICO)

Work with us.

As a qualified and experienced GDPR consultant, Sohrab can help you achieve and maintain GDPR compliance and sustainability with a professional and cost-effective strategy. He can also work with you as an acting Data Protection Officer or on behalf of your organisation or as an external GDPR compliance advisor. This includes reviewing, monitoring, providing support and ensuring GDPR sustainability.

Work with us