Arktek Group Limited’s Commitment to the General Data Protection Regulation (GDPR)

Version: January 2018

Introduction

On the 25th of May 2018 the new EU General Data Protection Regulation (GDPR) will come into effect changing the way businesses gain and use customer data. Superseding the 1995 EU Data Protection Directive, the new regulation will address the growing importance given to customer data.

Commitment Statement:

Arktek Group Limited is committed to being GDPR compliant, both as a Data Controller and Processor, ahead of its implementation date. We have always taken in consideration our customers privacy rights. We will continue to do so and we will make the necessary steps to ensure our customer data is protected within the new standards. Having recently undertaken a Readiness Assessment, we feel confident in our ability to make all the necessary amendments to our policies and procedures. In addition, we are also committed to ensuring that our partners and subcontractors are compliant with GDPR and aware of any changes in our regulations.

What are we doing?

  1. We are working with QMS International and keeping up to date with information published on the ICO (Information Commissioner’s Office) website.
  2. Having understood how the new regulation will have an impact on the business, Arktek Group Limited has taken the necessary first step in identifying any gaps by reviewing its readiness. We have been advised that at this moment there are no badges that can confirm GDPR compliance status. However, it was suggested that for a company of our size following the standards of ISO 270001 would be sufficient. We are currently working towards gaining this accreditation and hope to do so by the end of Q2/2018.
  3. Using a self-assessment tool, we are monitoring our progress in making any necessary changes in our policies and procedures.
  4. We have appointed a member of the Management team to be responsible for GDPR compliance.
  5. Developing data mapping techniques for processing and storing personal information.
  6. Reviewing marketing activities to make sure they are in line with the new policies.

What is next?

Artkek Group Limited is excited for the opportunity to once again prove to our customers the value we place on delivering high quality services in all aspects of the business. We are taking the necessary steps to be GDPR compliant and feel confident in our ability to do so well in advance of the 25th of May 2018 deadline.

 

GDPR useful links:

For more information about GDPR you can refer to these links:

https://ico.org.uk/

https://www.eugdpr.org/eugdpr.org.html

 

 

 

 

Copyright Arktek Group Limited 2018. This information is provided for customer guideline purposes only and should not to be relied on for any reason. It is subject to change or removal without notice.

General Data Protection Regulation

On the 25th of May the European Union’s General Data Protection Regulation (GDPR) will come into effect. The new legislation addresses changes which have occurred in the digital environment since the creation of the 1995 EU Data Protection Directive. This will require businesses to align their policies with the new rules and reassess how they treat their customers data. Although this is an European Union directive, Brexit will not be a saving grace for companies looking for an easy way out as official’s state that UK data protection rules will align with the EU’s GDPR.

Arktek Group’s Commitment

At Arktek we consider the new regulation to be another opportunity to strengthen our promise to our customers. We pride ourselves in our high-quality standards and our motto of “get it right the first time, every time”, as a result we have taken a proactive approach in addressing the changes before they come into effect. This past week, Mark Grover delivered a three day GDPR Readiness Assessment on behalf of QMS International and helped us identify ways in which we can improve.

The results showed we have a good foundation to build on and using the information presented to us we will review our policies and address any gaps. In addition, we will be using data mapping techniques for processing and storing personal information, undertaking a data protection impact assessment and tracking our progress of GDPR readiness using the self-assessment tool provided.  We are aiming to finalise our changes by the end of February and will update in due time as we make progress on our journey to being GDPR compliant.

Conclusion:

While some may see the new regulations as a hindrance to their business, there is a light at the end of the tunnel. By adhering to the new security standards and principles stipulated by the GDPR, companies will be able to clean up their data and maximise the effectiveness of their communication efforts whilst protecting their customers. In addition, the increased transparency that companies need to showcase will only lead to better relationships with their clients, ones based on trust and loyalty. Ultimately, whether you are a customer, a data processor or data controller the new regulations will be beneficial to all and will bring about a new era in the way companies and customers interact.

For more information and news regarding the GDPR you can refer to the Information Commissioner’s Office website: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/