GDPR Readiness Assessment
Are you in the dark about how you should prepare for GDPR?
GDPR Readiness Assessment
GDPR goes far beyond the realms of just ‘data protection’. Failure to comply could land a fine of 4% of your annual turnover on your desk.
The previous directives failed to consider the online risks we face in the digital age. However, moving forward it will be essential that any business which handles personal data must know how to obtain, store, and protect it from cyber breaches.
With simplicity in mind, we offer a hassle free and easy to follow Readiness Assessment to ensure that you are prepared for GDPR.
What does our GDPR Readiness Assessment entail?
With GDPR now in full force, would you know how to report on a breach within 72 hours?
We can help you understand the potential risks you face and the steps you should take to mitigate them.
Ready to achieve your security goals? We’re at your service.
Whether you are a CISO, an IT Director or a business owner, Equilibrium has the expertise to help you shape and deliver your security strategy.
What does it entail?
Using the IASME GDPR framework, we will conduct a gap analysis to review how you obtain, store and protect your data from potential breaches against five components:
- Cyber Insurance
- Technical Controls
- Security Policy
- Security Training
- Risk Assessment
Once completed, a Security Consultant will work collaboratively with you to ensure you achieve your IASME GDPR Readiness Certification.
It is by no means a ‘one size fits all’ approach as we know that each business is unique and at a different point in their journey to readiness.
What is GDPR?
The GDPR regulations was put into force on May 25th 2018, and applies to all businesses who the handle personal data of EU citizens (including the UK post-brexit).
The aim of GDPR is to improve how businesses are handling personal data so that it can be protected from cyber breaches. GDPR compliance is a legal requirement, failure to follow the necessary steps could lead to a fine of 4% of your annual turnover.
What are the GDPR requirements?
GDPR is all about understanding where your data has come from, how it is stored and how you are protecting it. It is essential that you have a data process plan so that you have a clear picture of how your sensitive information is handled. As part of this you must have technical controls in place to safeguard your information. You must also provide awareness training for staff so that they can be educated about how they should process data in line with GDPR compliance. In the event of a breach, it is essential that you have a disaster recovery plan as you are obliged to notify the ICO within 72 hours and any affected data subjects without hesitation.
What will GDPR Requirements and Compliance entail?
The General Data Protection Regulations will require businesses who process or store large amounts of EU personal data to appoint a Data Protection officer. This person will be in charge of overseeing the data security strategy and GDPR compliance.
As most of us aware, if you fail to comply with GDPR you could be liable to pay a fine of up to 4% of your annual turnover. However, if you can prove that you are making a conscious effort to achieve GDPR compliance and keep your data protected the ICO is likely to have some flexibility.
If you experience a data breach once GDPR is in force, you will be obliged to notify the ICO within 72 hours. The ICO does recognise that it is difficult to thoroughly investigate a data breach within this time which is why they allow you to supply the information in phases.
How can we help?
Here at Equilibrium we are a Cyber Essentials Certification body, CREST certified penetration testers and Cisco Partners with an Advanced Security Accreditation. As credible and highly qualified security experts, we are very well placed to offer both Cyber Security advice and step by step guidance on how to build a GDPR readiness plan.
- CREST and OSCP certified penetration testers
- Long-established Cyber Essentials certification body
- Industry knowledge and partnerships with best-of-breed security vendors
- Proven track record of safeguarding businesses of all industries and sizes
Frequently Asked Questions
We could tell you that we are highly qualified experts, with over 20 years’ experience in the Cyber Security industry. Or that we have a proven track record of implementing effective Cyber Security strategies for NHS trusts, financial organisations, high-street retailers and SME’s.
But we want to show how we stand out from the crowd.
You’re probably more interested in how we can supercharge your security strategy and launch you above and beyond your Cyber Security goals.
Our team are the driving force of your security initiatives. By partnering with us, we don’t just protect your data. We stand with you in the fight against cyber-crime. Our experts are on-hand to help you stay ahead of the curve and build a Cyber Security culture which is part of your company’s fabric.
Should you choose a general IT provider to handle your security, or partner with a dedicated Cyber Security specialist? Whilst a general IT provider may well be the cheaper option, would you trust a dentist to conduct heart surgery, if they were offering the service for half the price?
When it comes to the security of your business, second-rate protection is simply not an option. By partnering with experienced security experts, you can rest assured that your security is in safe, experienced, and dependable hands, and have far less sleepless nights!
We’re not a jack of all trades like a general IT provider. We’re experts in our field and specialise specifically in Cyber Security. The core foundations of Equilibrium were built by technical experts with a background in network security. Which means we don’t simply resell a security product and let the fancy tech do the talking. We know our stuff and have the skillset and experience to prove it.
For us, communication is key to building strong security partnerships. We are told this is a fundamental part of why our customers choose us over our competitors. We pride ourselves on being good listeners, never leaving you in the dark and always taking time to understand the inner workings of your business.
Relax we’ve got this. As an extension of your team, we’re there to offer our extensive industry knowledge, provide innovative solutions and be the driving force of your security strategy.
We’re not a supplier who needs handholding. We’re the helping hand. We understand the importance of having a security partner you can trust to get the job done, on-time and in-budget.
We have an eye for the finer details. For us, it is all about dotting the i’s and crossing the t’s when it comes to the security of your brand.
By combining our technical expertise with our dedication to helping you achieve your Cyber Security goals, we help to leverage your security capability to new heights.