The General Data Protection Regulation (GDPR) has been described as a “game changer for everyone” by the Information Commissioner’s Office. This new piece of EU data protection law represents a major shake up in the way we collect, process and store personal data. The legislation aims to standardise data protection law across the EU, giving individuals more control over how, when and by whom their data is processed.
Threshold is committed to partnering with our service users to help prepare for GDPR. Here we will explain what we are doing to achieve GDPR compliance both internally and for those we support.
1. Preparing for GDPR: We have adopted a company wide approach to become GDPR ready and we have been preparing the business for the significant changes involved. These include:
a. Updating and amending our terms and conditions, service user agreements and privacy statements to bring them in line with the GDPR legislation.
b. Ensuring that correct and appropriate terms are in place with data processors which support the principles of GDPR.
c. Updating our internal policies and practices to respond to GDPR requirements.
d. Continuing to invest in our services and staff training.
We are continuing to monitor the GDPR guidance, adapting our preparations accordingly before GDPR comes into force on 25th May 2018.
2. Security Standards and Certifications: Protecting our staff and service users’ privacy and securely managing your data is a high priority for us. Systems Integration manages our servers and data transfer processes for the purposes of maintenance, support and development. Access to our servers is tightly controlled; only authorised company administrators are granted access. Staff training is an important ethos that we hold as a company. As such, we plan to ensure all our staff have an up-to-date working knowledge of data protection law inclusive of GDPR legislation.
3. Stay Updated: We will be updating this you throughout the process with current information about our GDPR readiness and our commitment to protecting our staff and service user data. If you have any specific questions about our preparations, please contact us directly at: firstname.lastname@example.org