GDPR represents one of the greatest regulatory changes in how personal data is processed and stored. Its reach and potential enforcement are significant as it covers any EU citizen’s personal data, no matter where in the world it is processed, making it in effect global. The GDPR is effective from the 25th May 2018.

To support businesses to their processes and infrastructures, MLINE IT Consulting & Services has designed a series of services that provide the insight and guidance needed to ensure ongoing observance of obligations.

GDPR GAP Analysis

The GDPR GAP Analysis covers the three critical areas of people, process and technology and highlights the areas of potential risk. Conducted by GDPR-qualified consultants, it analyses the business’ maturity in eight key areas:

  • GDPR governance and compliance
  • Data privacy risk management
  • Personal information management
  • Security management
  • Third party management
  • Incident management
  • Protection of data subjects’ rights

Building on the output of the GAP Analysis, our team will then work collaboratively with the business and process owners to build a plan for ongoing compliance The goal is to reduce your operational risk and be able to demonstrate compliance  to the Regulation.

These plans are created bespoke and can include areas such as:

  • Prioritization of the areas of most risk or of greatest remedial impact
  • Data Protection Officer considerations
  • Process assessment
  • Technology alignment

GDPR GAP Analysis

We will advise, lead and consult on the various areas of necessary improvement, and manage their overall delivery. We then ensure your compliance  project provides your business with value by updating your original GAP Analysis to clearly identify the areas of improvement.

GDPR Assurance

Our GDPR Assurance service provides ongoing management and advisory services to help your organization accurately manage its day-to-day adherence obligations.

This service includes:

  • Reviewing and consulting on privacy policies, procedures and documentation
  • Data protection and information security consultancy
  • Ongoing monitoring of compliance to the Regulation
  • Supporting your interactions with data subjects and Supervisory Authorities

We start these services at the same time as the GDPR compliance service. This ensures that while your organization is remedying the issues highlighted in GAP Analysis, you are not left unprotected.

If your business is mandated to have a Data Protection Officer, for example if you are a public authority or are processing personal data at large scale, we have a dedicated Data Protection Officer as a Service offering.

Download our study about IT applications that can support GDPR compliance and assurance