On Friday 25th May the GDPR came into effect with some small business owners still struggling to understand what they should be doing to gain full compliance. Although the noise around fines has died down the threat is still present, and even more so with the legislation now in effect. Becoming GDPR compliant from a small business point of view is not just about registering as a data controller on the Information Commissioners’ Office website, publishing a Privacy Policy or ensuring you have consent for people to receive your newsletter, it covers much more including:

• understanding the data you hold;
• implementing and/or updating organisational practices, procedures and policies;
• conducting relevant risk assessments;
• ensuring your contracts and service agreements incorporate GDPR relevant clauses; and
• raising awareness and heightening Cyber Security practices.

WORKSHOP OUTLINE

As the GDPR is focused on Data the first step towards compliance is understanding your business data which will be the focus of this half day interactive workshop. You will be assessing what data you have in your business, why you have it, what risks are posed based on the type of data you hold and ways in which you can combat the risks.

You will also be looking at how to develop and implement controls based on where you work, what systems you use and who you work with.

The workshop will cover the following areas:

• a brief overview of GDPR and how to keep up to date;
• creating a business data map;
• assessing risk based on the data mapping exercise;
• identifying environmental, technical and stakeholder controls that will help you manage and protect your data effectively;
• identifying the essential policies required to ensure you and your stakeholders are embedding GDPR compliance in your day to day business activities.

WHY YOU SHOULD ATTEND

This workshop is for you if:

• you require guidance on how to analyse and assess the personal data you hold.
• you would like to understand and plan for the level of risk that the business data you hold may pose.
• you need advice on the right systems to use to implement, monitor and action practices that will assist you in becoming GDPR compliant.

By the end of the workshop you will:

• have clarity on what data you hold, why you hold it and who has access to it;
• gain a better understanding on the types of risks posed to your business based on the data your hold;
• be provided with a guide on environmental, technical and stakeholder controls to adopt;
• be provided with a list of policies to implement immediately.

WHO SHOULD ATTEND

This workshop is for all small business owners in general, especially those who are keen to apply for public and private sector tender opportunities