GDPR - Gap Analysis Fostering services, Charities, Not for Profits

UK GDPR - Gap Analysis

Gap Analysis

Working together to map your alignment with the UK GDPR and Data Protection

UK GDPR (General Data Protection Regulation) requirement and your responsibility

The UK GDPR is clear that your first responsibility is to your data subjects; these are the young people in care, your staff, your foster carers including prospects, employees and your suppliers. They have fundamental rights to be informed of how and why you manage their information, what their rights are and how to exercise those rights. Education for employees at all levels is critical to ensure that they fully understand their obligations to data subjects when they manage information on behalf of the organisation.

How effective are your Data Protection processes?

An effective method of determining your organisations current level of alignment with UK GDPR and DPA 2018 is to conduct a gap analysis. The analysis will identify the necessary steps required to assess the maturity of your UK GDPR compliance alignment and allow you to determine where your priorities lie in terms of actions. In addition, this will enable you to have a clearer understanding, in order to plan/budget the costs and benefits of the decisions you make.

Slide title

Write your caption here

Contact us
Slide title

Write your caption here

Contact us

The Gap Analysis process in four stages

To ease the process, this has been broken down into 4 key stages. Guardian Saints will provide ongoing support to assist you with each step on your journey toward UK GDPR compliance. The key stages are defined as follows:

Onsite information gathering with key staff, review of existing policies, practices and systems

Button
Generate report outlining identified gaps, along with prioritisation and remediation plan

Button
Presentation of final report to senior management outlining findings and actions

Button
You have the option to adopt our recommendations, closing the gaps independently or seek our assistance to implement the required change
Button

Engagements

All the work undertaken by our consultants is peer reviewed by certified assessors and GDPR practitioners to ensure alignment to Cyber Essentials and IASME governance standards. Cyber Essentials is the certification programme run by the UK Government’s National Cyber Security Centre and may be advantageous for those organisations seeking to secure ‘Government’ contracts. IASME’s standard is specific to the requirements of UK GDPR where viewed through a governance lens.

Dependant on the size of your organisation and the number of employees, it is anticipated that typical engagement time frames would be as outlined below: