GDPR Website Compliance Audits

You are reading about: GDPR Website Compliance Audits

Article Author: Blue2 Digital

ISO 27001 Certified

Blue2 are committed to GDPR compliance

As part of our own commitment, to achieving compliance prior to the regulation’s effective date, we undertook the task of becoming ISO 27001 (information security management) certified to give our clients, and their customers, additional peace of mind. We are delighted to have achieved this accreditation in November 2017.

With this accreditation in place along side our extensive online data management experience, we can now speak to our clients (and other website owners) from a position of real strength about GDPR.

What you as a business needs to do?

Businesses have until 25th May 2018 to comply with new EU data regulations. These regulations surround how you gather, store and use personal data as well as how you manage requests to provide and delete owners data at their request. The regulations are designed to strengthen data protection for EU citizens and enforces strict rules around the capturing, storing and management of customers and users data.

All companies must comply – there are no short-cuts here!  Under the GDPR, authorities can fine organisations up to the greater of €20 million or 4% of a company’s annual global revenue, based on the seriousness of the breach and damages incurred.

Blue2 offer a complete audit and compliance service for our clients and website owners to ensure they are fully compliant prior to the regulation’s effective date.  Following the audit we can also implement the necessary changes for you.

The service starts from £245 but costs may be higher based on the size and complexity of your website and business. The full service includes:

    • Personal information audit
      We’ll thoroughly review your website and database and provide an audit of all the ways that personal information is gathered or used.
    • Personal information workshop
      We’ll discuss with you what information is vital to you and what your aims and ambitions are with it to ensure that only the necessary data is being gathered, processed and stored lawfully.
    • Recommended action report
      Based on our audit and workshop we’ll provide a report on any recommended actions you should take regarding how you to collect and store data. We’ll also advise on any systems, plugins and tools you are using which are not GDPR compliant.
    • Privacy policy audit
      We’ll review your privacy policy with regards to the recommended actions, and provide an updated draft which is more fitting for the specific personal information related tasks that you will be carrying out.
    • Required Updates
      Make the required updates to ensure you fully comply.

For further details contact your normal contact at Blue2 or alternatively email [email protected] or call us on 01382 223111 and our team will be delighted to speak to you.

We recommend getting the ball rolling as soon as possible to ensure compliance prior to the 25th May implementation date.