DATA IS AT THE HEART OF EVERY BUSINESS
Data is collected, stored and used for many different purposes and is arguably the most valuable asset within a business.
Whether holding data on employees, suppliers, contacts, prospect lists or customers, most businesses collect and hold some sort of data, which they use to inform decisions. However, too often, businesses fail to consider that personal data still belongs to the individuals who share it with them in good faith.
With more data comes more risk, and legislation such as the General Data Protection Regulation, among others, makes businesses accountable for the personal data they are entrusted with. That’s why data compliance needs to be a key consideration within your business.
We will work with you to keep your business compliant with all the latest data regulations.
Help you to understand the legal instruments and obligations that apply to your business and its data usage.
Evaluate your processes and identify any risk points. We can make recommendations on alleviating those risks.
We will help you to document all your processes and achieve a thorough understanding of your businesses data processing.
We can help you draft and implement the policies, procedures, logs and other documentation you need so you can demonstrate compliance with legislation.
Xynics can help you to ensure you have appropriate staffing to handle data compliance within your business, whether these staff are internal or external consultants.
Data Compliance is an organisational responsibility and everyone in the business needs to understand the role they play in ensuring compliance for the organisation. Xynics can deliver tailored training or generate educational material to help you communicate the obligations to your staff effectively.
Having an effective data compliance policy will ensure that your business is compliant with all relevant legislation and following recognised best practice guidelines.
The following are just some of the main UK legislations that are applicable to data compliance (not all apply to all organisations).
Data Protection Act 1998
General Data Protection Regulation 2016
Data Protection Bill 2017
Privacy and Electronic Communications Regulations (EC Directive) 2003
Privacy and Electronic Communications Regulations (EC Directive) (Amendment) 2011
Freedom of Information Act 2000
Regulation of Investigatory Powers Act (RIPA) 2000
Computer Misuse Act 1990
Human Rights Act 1998
Malicious Communications Act 1988