Compliance Support

Organisations are responsible for how they use personal data, that’s why the GDPR includes an Accountability principle that stipulates that organisations must be able to demonstrate how they comply with data governance standards. This means that organisations need to develop a practical and robust approach for the communication and demonstration of the relevant roles, procedures and responsibilities they employ to achieve compliance.

Compliance Support

How do I know if I am compliant?

Trilateral offers compliance assessments, which evaluate your organisation’s data protection strategies to determine what actions are needed across your organisation to improve compliance with relevant EU and national legislation.

These actions might include:

  • the development of a data protection policy & procedure manual;
  • providing advice and recording decisions on how long data will be kept (data retention periods);
  • putting in place controller/processor legal or data sharing agreements;
  • implementing technical and organisational measures to ensure an appropriate level of security;
  • as well as other mechanisms required based on the organisation’s processing activities.

Trilateral’s approach

Trilateral will perform a gap analysis to identify priority areas that need to be strengthened and produce a list of action items for each function/department within your organisation.

Trilateral assists in establishing a library of documentation and templates that will:

  • Demonstrate compliance with data protection laws and information security requirements;
  • Outline appropriate policies and procedures;
  • Help to establish a data protection culture across the organisation.

Depending on your needs, we can work with you directly to build the required documentation, or we can review the documentation produced independently by your staff and suggest specific improvements.

Why Trilateral?

When determining priority areas for compliance, Trilateral adopts a risk-based approach that is based on client’s specific risk-appetite. This will include prioritising action items according to urgency, for example, prioritising the development of  missing or inadequate documentation that will make the most immediate and significant impact on compliance.

Contact us

    Gap Analysis
    Map your business’ requirements, identify strengths and weaknesses and create a plan.
    Build awareness within your team and reduce your organization’s risk.
    Data Protection Impact Assessment
    Assess an existing system or process and reduce your risks by understanding and mitigating them.

    Sign up for our newsletter

    Join our mailing lists to receive updates about our latest research and to hear about our free public events and exhibitions.  If you would like to find out more about how we manage your personal information please see our privacy policy.