Data protection and the GDPR

While data protection and security have long been on the radar, more recent legislation like the General Data Protection Regulation (GDPR) has underlined that customers and regulators alike expect firms to take data seriously.

With expertise across compliance, financial crime, risk monitoring, and technology, we can help you map, manage and mitigate data-related risk and ensure you’re doing the right things with the data you hold.

We understand that no two firms are alike. Our approaches are always proportionate to the size, scope and business activities, targeting the most appropriate areas of risk and keeping you on the right side of the rules.

Helping you manage data protection

Data risk assessments

Conducting data protection impact assessments (DPIA), data risk assessments and legitimate interest assessments around your firm’s data processing. Helping with carrying out third country risk assessments.

Data mapping and analysis

Ascertaining what personal data you hold, why you hold it, where and how you hold it, how the data is accessed and who can access the data.

Impact assessments

Identification, assessment and mitigation of privacy risks in relation to data processing activity, particularly relevant prior to the introduction of new processes, systems or technology.

Data audits

Conducting annual independent data audits for your firms and any counterparties.

Policies, procedures and controls

Implementation or review of appropriate technical and organisational measures.

Privacy notices

Create clear privacy notices, ensuring transparency and the provision of accessible information to individuals about how their personal data is being used.

Staff training

Focusing on data protection, cyber security and fraud, ensuring everyone understands the role they play.

Monitoring programs

Developing an efficient monitoring programme to ensure compliance with data protection. In addition, undertaking periodic gap analysis reviews to ensure you remain compliant.

Get in touch