Microsoft 365 help with regulatory compliance

The GDPR sets new standards for privacy and personal data

In May 2018, a new European Union (EU) privacy regulation goes into effect with broad reaching implications for organisations around the world. The regulation, called the General Data Protection Regulation (GDPR), introduces new requirements on privacy, security and compliance for organisations that offer goods and services to European Union (EU) residents.

  • Enhanced personal privacy rights
  • Increased duty for protecting data
  • Mandatory breach reporting
  • Significant penalties for non-compliance
GDPR UK EU Map Mobile Lock

GDPR: Not just Europe

The GDPR applies more broadly than many people think. The law imposes new rules on companies, government agencies, non-profits, and other organisations that offer goods and services to people in EU or that collect and analyse data tied to EU residents — no matter where they are in the world.

GDPR is applicable to organisations of all sizes and all industries.

Steps to get started with GDPR compliance

1. Discover: Identify what personal data you have and where it resides
2. Manager: Govern how personal data is used and accessed
3. Protect: Establish security controls to prevent, detect and respond to vulnerabilities & data breaches
4. Report: Keep required documentation, manage data requests and breach notifications

Key changes required by the GDPR 

Personal privacy

Individuals have the right to:

  • Access their personal data
  • Correct errors in their personal data
  • Erase their personal data
  • Object to processing of their personal data
  • Export personal data

 

Controls & Notifications

Organisations will need to:

  • Protect personal data using appropriate security
  • Notify authorities of personal data breaches
  • Obtain appropriate consents for processing data
  • Keep records detailing data processing

Transparent policies

Organisations are required to:

  • Provide clear notice of data collection
  • Outline processing purposes and use cases
  • Define data retention and deletion policies
  • Use plain English in their policies
  • Comply where the data is of an EU resident

 

IT & Training

Organisations will need to:

  • Train privacy personnel and employees
  • Audit and update data policies
  • Employ a Data Protection Officer (if required)
  • Create and manage compliant vendor contracts

Microsoft technology forms the basis of our GDPR solution

Process all in one place

Centralize processing in a single system, simplifying data management, governance, classification, and oversight.

Maximize your protections

Protect data with industry leading encryption and security technology that’s always up-to-date and assessed by experts.

Streamline your compliance

Utilize services that already comply with complex, internationally-recognized standards to more easily meet new requirements, such as facilitating the requests of data subjects.

Employ existing functionality

Take advantage of GDPR friendly features that may already be available to implement in your environment

Technology experts

  • Microsoft 365
  • Protective Marking
  • Azure Information Protection
  • Application Development, Security & Integration
  • Office 365, SharePoint, Umbraco & ASP.NET

We’ll work with you to uncover risk, and take action

Discover data across systems

  • Discover and catalogue data sources
  • Increase visibility with auditing capabilities
  • Identify where personal info resides across devices, apps, and platforms

Govern access and processing

  • Enforce use policies and access controls across your systems
  • Classify data for simplified compliance
  • Respond to data requests and transparency requirements

Protect through the entire lifecycle

  • Protect user credentials with risk-based conditional access
  • Safeguard data with built-in encryption technologies
  • Rapidly respond to intrusions with built-in controls to detect and respond to data breaches

360 GDPR services

  • GDPR Readiness Assessment
  • Web & Mobile Application Compliance
  • HR and Recruitment Agency Processes
  • Enterprise Forms Management
  • Self-Service User Experience

As a Microsoft partner, we can help!

GDPR enforcement begins 25 May 2018. Is your organization ready?

We have the skilled personnel, process knowledge, and Microsoft technology expertise to evaluate your GDPR readiness and help you on your path to become, and stay compliant.

An ideal starting point is a detailed assessment of your GDPR readiness. We offer this as a complementary service. We’ll work with you to evaluate your organisation's privacy posture, uncover risks, provide expert guidance around the GDPR, and offer recommendations specific to your organisation.

Call 0151-355-7911 to book your free GDPR readiness assessment.

Applications

Drop us a line

*
*
*
*