GDPR - General Data Protection Regulation
Manage your GDPR obligations with the internationally recognised standard, ISO 27001 Information Security Management Systems
Not sure where to begin?
Speak to our customer service team on
Make an enquiry
What is GDPR?
GDPR, effective from May 2018, is the latest data protection regulation from the EU and has been designed to protect all EU citizens from privacy and data breaches in an increasingly data-driven world.
In the UK, GDPR replaces the Data Protection Act 1998. The GDPR introduces new obligations to data processors and data controllers, including those based outside the EU.
The regulation significantly extends the rights of ‘Data Subjects’ (people you hold data for or process data). For example, the right to know what data is stored about them, and to request correction and erasure.
Given that a breach can lead to fines of up to 4% of annual worldwide turnover or €20 million (whichever is greater), it is important for companies to assess how GDPR will affect them, and prioritise preparations to comply by May 2018.
How can ISO 27001 help with GDPR?
ISO 27001 Information Security Management is the broadest and most well-known business framework for managing information–related risk. The standard outlines specific requirements and controls to ensure that your business responds to regulatory requirements, such as EU GDPR, as well as ensuring that the appropriate controls are in place to manage risks to your business information, including personal records.
If the scope of your ISO 27001 certification identifies personal data as an information security asset, much of the EU GDPR requirements will be covered.
Many of the GDPR requirements, are also requirements of ISO 27001, so the two are well aligned. Examples of these requirements include: Responsibility and accountability, Gaining consent for holding and using data, Appointing a Data Protection Officer, and Recording and investigating data breaches.
Why choose ISOQAR for your ISO certification?
60% of customers have benefited from an increase in revenue due to having certification with ISOQAR
Government-recognised UKAS certificates, established since 1993 with offices all over the world means your certificate has global recognition
99% Client Satisfaction
99% client satisfaction with audits and an NPS of 70
Save Time & Money
Integrated audits for multiple standards keep visits to a minimum and save you money
Free to Join
Free to join if you transfer and we do the paperwork
Access to over 300 independent ISO consultants via our IAN network
What our clients say about Alcumus ISOQAR
“ISOQAR’s ability to prioritise their customers’ needs is very refreshing.”
Nichol Maher - Environmental Health & Safety Manager - Chubb Systems
“Gaining ISO 27001 certification has strengthened business resilience for our clients not just from a technical standpoint, but from a financial perspective too.”
Phil Robinson - Managing Director - Prism Infosec
“ISOQAR audits are very thorough and the reports issued are clear and easy to follow.”
Edward Gee - Technical and Compliance Director - Platinum
"Having worked with a large number of their trainers, the high standards of training are institutionalised rather than being down to the individual auditors, and hence Alcumus have been listed as our ISO training organisation of choice."
Cam Pulham - Oil Spill Response