Talk to us

Data Security

We'd love to Talk

Data Protection

How can we help, your business remain Data Protection Compliant?

Our consultants help organisations, keep personal information safe, If your organisation process, store and transmit PII (Personal Identifiable Information) or SPII (Sensitive Personal Identifiable Information) data for or on behalf an organisation.

Digital Secures consultants can walk you through compliance, by offering ongoing advice and support to your business, this will help keep you compliant, when processing data for the business or with 3rd Party Suppliers. We can help you develop controls to manage your data requirement securely.

Data Classification

Understanding the type of data your business processes, stores and transmits is key to remaining DPA Compliant.

If your business processes

• PII - Personal Identifiable Information

• SPII - Sensitive Personal Identifiable Information

• Customer Information

• Financial / Sales Data

• Commercially Sensitive

• Employee Records

• Medical / Patient Records

It is important to classify the data sets stored on computers or in paper format into groups which re meaningful to your business and meets any other relevant industry data security standards.

Read more about Data Classification Principles

What’s the Data Protection Act all about?

The Data Protection Act 1998 (the Act). is a guide of requirements which businesses and organisations adhere too.

The Data Protection Act 1998 aims to promote high standards in the handling of personal information and so protect the individual’s right to privacy.

The Data Protection Act 1998 applies to firms holding information about living individuals in electronic format and, in some cases, on paper.

Organisations & Businesses must follow the eight data protection principles to adhere to good information handling.

The Data Protection Act 1998 stipulates, that personal information must be:

1. fairly and lawfully processed;

2. processed for specified purposes;

3. adequate, relevant and not excessive;

4. accurate and, where necessary, kept up to date;

5. not kept for longer than is necessary;

6. processed in line with the rights of the individual;

7. kept secure; and

8. not transferred to countries outside the European Economic Area unless the information is adequately protected.

The Data Protection Act 1998 requires the Information Commissioner to maintain a register of:

A: certain data controllers (broadly speaking, firms and others who are responsible for processing information); and

B: the purposes for which they use personal information. If your business hold and process information about individuals who are customers, employees, suppliers, clients or other members of the public, you may need to record that on the register. This is called ‘notification’.

© 2013 Digital Secures Limited | Designed and built by Digital Websites Limited