An initial review of your organisation’s readiness which includes a report that shows how prepared you are for GDPR and provides a prioritised outline of the activities you need to address on your GDPR journey.

What is the GDPR Health Check?

Our Health Check provides a first step in your GDPR journey by considering how your organisation is positioned to address its legal obligations under the GDPR. The review takes into account types of personal data (where it is held, whether it is secure, special types and recipients), existing privacy notices, policies and documentation, existing consents as well as software used, third-party providers engaged and the requirement for a Data Protection Officer etc.

What does the GDPR require?

The GDPR supersedes virtually all current data protection legislation in the EU and is currently being introduced into UK data protection law as the new Data Protection Bill. A major change is that individuals must have control over their personal data. Processing this is unlawful by default, so this review is the first step to prove in advance your processing is lawful. Some new and extended requirements include:

Why do a Readiness Review?

You need to understand how GDPR will impact your organisation, including what preparations are necessary to comply with your GDPR obligations.

Your organisation must satisfy the legal requirement to demonstrate that it complies with the GDPR.

Readiness Review outcomes

The Readiness Review provides you with a summary of GDPR as it applies to your organisation, a view of your current data and processing based on the interview and a prioritised set of next steps (cross-referenced to GDPR) and a high-level milestone plan. It also provides an indication of the effort and timescales required for each action and how we can support you in achieving these.

The action plan covers areas including: