What is this?
We provide a suite of key documents to help you manage and control how data protection is carried out in your organisation. These include policies and procedures for:
- The overall control of data protection in your organisation (a Data Protection Policy)
- Direct marketing
- Providing ‘privacy information’ to individuals (Privacy Notice)
- Data breach
- Records retention and destruction
- Providing individuals with their data when they ask for it (Subject Access Request)
- Information Security
- Payment cards
Why do I need it?
A governance framework provides documentation setting out for everybody in an organisation what things are to be done (a policy) and how things are to be done (procedures). Depending on the size and complexity of your organisation, there are a number of key documents that should be in place to govern and inform your people about the handling of personal data.
The existence of and contents of these documents should be communicated, if only in headline form, to everybody in your organisation that handles information about people
What’s the process?
Working with you, we’ll develop documentation that’s appropriate and proportionate for the size and complexity of your organisation and the personal data that it handles. This is usually an iterative process which will produce the framework that’s right for you.
What do I do next?
Talk to us by using the red ‘Book Online Consultation’ button.