Our team collaborates across social science and technology, to bring insights from each to capture the benefits of data-driven innovation. We create knowledge and tools that empower our clients to transform research into innovation and innovation into impact.
Not all organisations require a DPO, however, where processing is carried out by public authorities, where the core activities of the controller require the large-scale systematic monitoring of data subjects, or where these core activities involve large-scale processing of special categories of personal data, a DPO will be required. Nevertheless, for many the cost of maintaining a full-time internal DPO is unjustified, and the GDPR allows the outsourcing of this role to sufficiently skilled contractors. Trilateral’s GDPR-certified employees possess the necessary skills to fulfil this DPO role for your organisation. Read more about our Data Protection Officer Service
We offer the full range of GDPR compliance activities to ensure our client’s systems and processes meet the relevant requirements under the Regulation. This includes: producing or assessing privacy notices; identifying and developing requisite consent requirements; assessing your legal basis for processing; conducting Legitimate Interest Assessments; identifying whether your processing of personal data meets the ‘high-risk’ threshold; and providing documentation and policies tailored to your specific organisation to support you to be compliant now, as well as processes to ensure you remain GDPR compliant in the future.
We use a range of qualitative techniques and software tools to identify and map the personal data assets contained within your organisations’ systems. We provide you with the requisite documented evidence of what data is being held, the legal justification for processing, who can assess the data, and how it flows both within your organisation and to external parties. Data mapping is an essential activity if an organisation is to: assess its data assets as part of its risk management activities; match security measures to data assets based on risk; and meet accountability requirements under the GDPR.
A DPIA is mandatory under the GDPR when your processing of personal data is likely to result in a high risk to the rights and freedoms of natural persons. It is also recommended to carry out a DPIA when developing new systems or products to assist data controllers identify the risks in their processing and comply with data protection law. As a founder of Privacy Impact Assessments (the precursor to DPIAs) and possessing the necessary technical expertise, Trilateral has unparalleled experience in conducting DPIAs for clients, whether from industry, government or the third sector.
Incomplete or inaccurate privacy notices and consent procedures that fail to meet the specific requirements set out in the GDPR place an organisation at immediate risk of action by data subjects. They also represent highly visible indicators of an organisation’s overall state of GDPR compliance. Trilateral can review and amend your existing notices or develop new templates that meet the bespoke requirements of our clients, as well as advise on gathering new consents from your customers when initial processes fell short of the GDPR threshold.
We use a range of tools to provide data protection-by-design support services for clients looking to ensure compliance with the GDPR or responsible innovation principles. We asses user requirements, design specifications and deployment plans to embed personal data protections into new or existing systems. We work directly with technology developers and end users in agile development methodologies, providing privacy and data protection advice at every step. The result is a technology that is legally compliant and socially acceptable to users, allowing our clients to lead the way in responsible innovations.
A GDPR Gap Analysis assesses the current level of an organisation’s compliance against the requirements of the GDPR and assist an organisation to identify and prioritise key areas to address by 25 May 2018 and onwards.
Impact assessments provide an opportunity for organisations to explore, assess, analyse and potentially mitigate a wide range of risks in relation to new information and data systems. Our staff are GDPR certified and have a deep understanding of GDPR compliance. We do not follow a ‘one size fits all’ approach, rather we tailor our solutions according to the needs of the client. Our assessments include: Privacy Impact Assessment, Data Protection Impact Assessment, Ethical Impact Assessment and Socio-Economic Impact Assessment.
Trilateral’s interdisciplinary team engages with end-users to co-design STRIAD solutions enabling data-driven risk assessment and supporting evidence-based decision making. Visit the STRIAD page for more information.
We use a range of tools to provide privacy-by-design support services for clients looking to ensure compliance with the GDPR or responsible innovation principles. We asses user requirements, design specifications and deployment plans to embed privacy protections into new or existing systems. We work directly with technology developers and end users in agile development methodologies, providing privacy and data protection advice at every step. The result is a technology that is legally compliant and socially acceptable to users, allowing our clients to lead the way in privacy-protective innovations.
The appropriate uptake of new and emerging technologies is essential for achieving impact. We assess existing and emerging technologies, taking the position that technology alone cannot be relied upon to deliver a service. We support our clients in all stages of the technology development and uptake process, including: domain mapping, gap analysis, market impact assessment, identifying user requirements and establishing scenarios for development, benchmarking and performance assessment, user experience and social acceptability. Our assessments facilitate responsible research and innovation, ensuring that technology design, implementation and use is conducted to optimise the use of technologies.
We provide a range of applied research and evaluation. Our portfolio includes multidisciplinary expertise in social and political science, law and human rights, technology studies, economics, computer science and engineering. Our approach combines technological innovation with a social perspective. We provide historical insights as well as looking towards the future and potential trends. We are experienced in providing primary and secondary research expertise, including qualitative and quantitative research methodologies. In supporting research and innovation activities, we offer bespoke support in conducting and enhancing ethical research practices.
Our clients operate within a complex policy and regulatory framework. We assist private and public sector clients to monitor, interpret and comply with the political and regulatory environments in which they operate, and thereby shape their operations accordingly. We also support clients by conducting impact analyses across all affected stakeholders to develop new institutional or government policies, regulations and standards, and identify best practices and knowledge transfer under existing regulatory regimes.
Bringing a product to the market requires a set of complementary services in innovation management. First, potential clients need to know that a product exists. Second, enterprises need a business model to make their product attractive to users and enable them to effectively commercialise their product. Our expert team provides digital marketing services for security, ICT, smart cities and green technologies. We also create and implement business models for new technologies developed in the private and public sectors. Combined, these allow our clients to transform innovation into impact for their products and their businesses.
Extracting valuable and actionable insights from data relies on selecting the correct machine learning techniques. We offer the customisation of machine learning algorithms, which is crucial in; exploiting the inherent high value in cross-sector data exploitation, the rapid addition of new data, and responding to changing user requirements. We offer tools for machine learning that includes; statistical analysis, regression, clustering, classification, text analysis, behavioural analysis, pattern recognition, anomaly detection, and predictive modelling. Given the requirements of our clients, our machine learning tools are designed with high focus on achieving real-time performance.
With current technologies and IT infrastructures, large volumes of data are being collected from the Internet of Things (IoT), physical sensors, social media and online services. The quality of data collected in real-world settings is unpredictable, and typically some refinement of the data collection process is required before data reaches a sufficient quality level that enables exploitation. We offer a complete assessment of a client’s current data portfolio, combined with the identification of new potential data sources. We also offer database management to ensure that data is stored optimally and securely, and scales with demand.
Working with structured and unstructured data from heterogeneous sources is both challenging and necessary in most applications, and to extract optimal insights from data typically requires exploitation of cross-sector sources. We offer various digital signal processing algorithms to handle data fusion of cross-sector data. We also provide filtering techniques to compensate for missing data or outliers, regularisation to compensate for sparse and unbalanced data, and dimensionality reduction to remove unnecessary data and improve computation times. We offer tools to validate the integrity and quality of the data collected, both from data analytics and user-requirements perspectives.
Fully leveraging insights from data requires effective data visualisation and user-driven interactive dashboards that allows users to customise the properties of any analysis in response to their needs. For this purpose, we offer an interactive data analytics dashboard with focus on usability, dynamic features and real-time streaming, which allows users to rapidly react and respond to new data. Our client customised data visualisation and dashboard, is designed to supports all platforms. To ensure optimal usability we typically design these tools in collaboration with our clients. Our approach is to develop easy-to-use applications and easy-to-deploy software.
To protect our clients when designing and deploying technical solutions, we incorporate privacy and security by design and default into our tools to meet our client’s regulatory requirements, especially under the GDPR. Complementing the other technical services listed here, we offer clients technical data privacy and security solutions that include; the anonymisation or pseudo-anonymisation of data, data encryption, access controls for stored data, and data deletion. We offer to assist clients in mapping their data-flows, and minimising the unnecessary storage of data on their networks, thereby minimising the risk of damaging and costly data breaches.
The technology and tools provided here are not limited to any specific domain or application. Our provided service applies to all areas that require; optimal planning capabilities, the monitoring of processes, resources optimisation, improved decision-making support systems, and the identification of emerging trends and new service opportunities. We offer an end-to-end data analytics solution that allows clients to gain a competitive business advantage through proactive decision-making leading to preventative initiatives. Our solution offers a clear data-driven evidence base with well-defined KPIs and performance tracking.
You can view the Executive Summary and Table of contents of the Project Solebay Risk Assessment Methodology Report.
Please sign up to the Solebay mailing list to download the Full Solebay project report.