return to Consultancy Services
Consultancy Service

The EU General Data Protection Regulation (GDPR)


With the EU’s General Data Protection Regulation (GDPR) in full force, it is important that organisations have an ongoing GDPR compliance strategy in place.

To demonstrate compliance to the GDPR, organisations should focus on how privacy and data protection are handled as well as implementing a security model of ‘data protection by design’.

At the ISF we have the tools and guidance to put you on the right path to compliance.

Our Services can help you get there by:

  • mapping all the personal data your organisation holds (e.g. customers, employees and suppliers) and performing a gap analysis against the GDPR’s requirements
  • scoping and facilitating a GDPR implementation programme
  • assessing the security of data processing (using the ISF’s Standard of Good Practice and the Benchmark tool)
  • conducting Data Protection Impact Assessments and embedding them into business-as-usual
  • reviewing data processing activities to determine compliance with the GDPR
  • implementing data subject rights, such as subject access requests, erasure and portability, across the organisation
  • providing data protection expertise, including supporting the Data Protection Officer in fulfilling the requirements of their role
  • creating and enhancing a culture of privacy awareness across the enterprise.