NCC Group offer a number of GDPR and privacy services. Our privacy services cover all elements of the lifecycle.
GDPR awareness – workshops of variable length covering the key changes coming with GDPR. Delivered to all key stakeholders across the business, including marketing, IT, HR, finance, security, operations, etc.
GDPR training – one-day foundation level course which focuses on helping you and your organisation better prepare for GDPR and demonstrate compliance. As well as our public courses we can provide an in-house course for your organisation.
Data mapping – identifies the personal data that is collected, created, received, processed, stored and shared by an organisation. Provides a view of how that personal data moves around the various internal/external processes/applications/systems.
GDPR health check – assesses an organisation against the requirements of GDPR through a combination of document review, workshops and interviews with key stakeholders. Output provides detailed findings and actionable recommendations.
Strategy & remediation – tailored support to privacy programmes, including providing external, independent representation on privacy steering groups. We offer a GDPR policy and procedure set that we can bespoke for clients.
Data Protection as a Service – GDPR allows for the outsourcing of data protection, including the Data Protection Officer. We can provide services such as Privacy Risk Screening, Data Protection Impact Assessments, GDPR remediation and M&A-related activities.