Happy GDPR anniversary
Back in June 2017, we started the process of auditing and reviewing all personal data we held. The result of this review was:
- A Candidate Privacy notice
- An Employee Associate Agreement
All of our staff were then asked to complete further data compliance checks. Following this we set up relevant retention policies over the 2018 Christmas period.
Supporting our clients
A year on and GDPR has certainly taken hold since its enforcement on the 25 May 2018. Not a day goes by when this isn’t reflected in the day to day work of our project teams based at client sites. Here are some examples of how we have achieved this.
SG Fleet, founded in 1986, has headquarters in New South Wales, Australia, and two sites in the UK. They are in full swing, reviewing their cross countries’ regulations and licensing.
We are providing SG Fleet with project coordination on a number of projects. The latest of these being the migration and implementation to a new cloud based telephony system.
The first step was the drawing up of the initial agreement and licensing between the telephony provider and SG Fleet Australia. Once in place, our onsite project coordinator was then able to supervise the novation of the agreement from Australia to the UK offices.
The Australian parliament has been completing some due diligence on updating privacy regulations to close the gap with Europe, although some differences still exist. As GDPR doesn’t just apply to EU businesses, it’s become crucial that the telephony licensing and data accounts follow EU GDPR regulations.
Supporting the not-for-profit sector
The Civil Service Sports Council (CSSC) is a not-for-profit organisation which promotes fulfilling lifestyle opportunities to its 160,000 plus members. We have been working with CSSC for over a year on different projects.
CSSC take all aspects of GDPR very seriously and ensure that they only use and request the minimal amount of information. As a consequence, the GDPR project was of particular importance to them. Courtney Brooks, one of our business analysts, has been supporting CSSC on several activities relating to GDPR:
- Reviewed their 3rd party organisations to establish if they were a data controller or a data processor
- Created a document for all 3rd parties to sign
- Developed a GDPR data flow diagrams detailing the data journey – from their creation, storage and accessibility
As a result our blended project teams have experienced a variety of situations which have helped us gain a greater understanding of GDPR. Alongside this we’ve continued to maintain strong relationships with our clients, and support them to successfully deliver projects.
Happy 1st GDPR anniversary!
Published: Jun 26, 2019
Let's start a conversation!
Contact us at email@example.com