There are two certainties in life, technology gets easier to use and the rules get more complex. 2018 sees the enforcement of the EU General Data Protection Regulation (GDPR) in the form of the Data Protection Act 2018 in the U.K. As more people share their information online, trust from customers has never been more important.
There is a lack of consistent guidance from consultancies and government on what the minimum baseline is, to show that you are taking this seriously.
The GDPR 12 Steps guidance from the Information Commissioner’s Office (ICO) is a good starting point, but what about the other legal requirements that have to be complied with (including Cyber)? How do you ensure that this doesn’t all change again tomorrow, and you get value for money from your GDPR engagement?
With ASIRTA™, we have created tools that allow any U.K.-based organisation to identify the activities required to comply with their legal obligations and present it in a format ready for the board to understand not only the impact of where they are currently, but also to show that they are improving.
ASIRTA™ allows you to leverage your existing security controls, and communicate your needs to your consultancies and supply partners to gain maximum benefit from your compliance spend.