The company had a significant number of employees and a large number of customers. Therefore with dealing with large amounts of private data, there were significant risks in not being fully cognisant of their duties and responsibilities under GDPR.
Our client dealt with a large amount of private data. This brought significant risks and meant that a full data audit needed to be carried out to ascertain all of the risks, challenges and data they had.
We met with our client for an initial consultation to gain an understanding of their requirements.
We started the process with a data audit. We undertook a number of attendances at our client’s premises, meeting with key staff and gaining an understanding of their procedures and processes.
The data audit allowed us to ascertain what documentation was required and allowed us to draft same.
Carrying out the data audit and meeting with key staff and reviewing the company’s processes, allowed us to gain a full understanding of the data protection risks. The documents required and the advices that need to be given.