Data Protection & Privacy

Keeping your DATA and PRIVACY protected.

Virtual Data Protection Officer (DPO)

Organisations controlling or processing personal data are encouraged  by the UK and EMEA GDPR legislation to appoint a Data Protection Officer (DPO) in order to better ensure data protection and privacy.

How we can help:

  • Named DPO: Act as your Data Protection Officer in the UK and multiple jurisdictions, ensuring compliance with regulatory requirements.
  • DSAR Assistance: Efficiently handle Data Subject Access Requests with our expert assistance.
  • Records of Processing Activities (RoPA): Maintain transparent data processing under Article 27 of GDPR.
  • Breach and Incident Response Support: Our 24-hour support minimizes potential damage in case of data breaches.
  • Monthly Newsletters and Updates: Stay informed with the latest data protection regulations through our informative newsletters.
  • Policy and Procedure Writing: Strengthen your data protection framework with customized policies aligned with industry best practices.
  • Implementation Support: Ensure a smooth policy rollout and staff training for a culture of compliance.
  • Continual Compliance Assurance: Navigating through changing regulations for ongoing compliance.
  • Risk Assessment and Control: Identify critical control weaknesses and review GDPR risks on your business risk register.

Audit & Assessment

Working with decision makers and key management to assist in implementing DPA and the relevant GDPR measures, we will help audit your organisation’s readiness and resiliency by testing systems, processes and infrastructure for security soundness.

Under both EU & UK GDPR, the proposed place to start your journey is to identify where your personal data is located, stored, transferred, processed and who has access to the data.

How we can help

  • In-Depth Examination: Thoroughly assess internal policies, procedures, and data processing activities for improvements.
  • Compliance Gap Identification: Pinpoint areas needing enhancement to align with data protection laws.
  • Risk Mitigation: Practical recommendations to minimize risks and strengthen data protection measures.
  • Tailored Solutions: Custom assessments designed to meet the unique needs of your organization and data privacy landscape.
  • Multi-Jurisdictional Scope: Evaluate data protection practices across regions to comply with diverse privacy laws.
  • Develop and provide a clear Road Map needed for regular review of security access and controls to ensure privacy and security of personal data resulting in a documented Data Protection Impact Assessment framework
  • Help the organisation develop a staff training and awareness program

Breach & Incident Response

Organisations do not have to look far for recent examples of high profile incidents that capture the media’s imagination and result in a consequential loss of customer confidence and damage to its brand.

The senior executive team should own and regularly review their incident response procedure. The procedure should enable responses to be effectively managed, including staff and third-parties or contractors.

How we can help:

  • Advise on developing procedures to effectively detect, report and investigate a personal data breach or incident. Under the DPA 2018 and GDPR, failure to report a breach could result in a fine.
  • Design and develop a Breach & Incident Response Plan.
  • As an appointed DPO, act as the incident responder working with those identified within the Breach & Incident Response Plan.
  • Support the regular testing regime of breach and incident response including specific development of bespoke desktop and play book exercises to test decision-making procedures.
  • Develop a communication plan for internal and external messaging to clients and staff, offering specific support for press and media handling.

Virtual Chief Information Security Officer (CISO)

Working alongside the client’s team of technical, IT, risk and compliance leaders, TenIntelligence acts as a CISO, an extension of in-house resources.

Our cyber security team helps to assess an organisation’s cyber risks by designing and implementing a cyber security strategy and culture through policies, procedures and controls needed to strengthen defences and achieve compliance standards.

How we can help:

  • TenIntelligence named as your independent Chief Information Security Officer (CISO)
  • Participate as an independent member of your information risk supervisory board
  • Review the risks identified during the Cyber Essentials certification phase, updating the risk register accordingly and create a critical list of control weaknesses
  • Assessment of your cloud/server/network access controls and privileged user accounts
  • Applying multi-factor authentication across your internal and/or external network
  • Analysis of device controls (mobile, laptop, hardware), remote working threats and their appropriate security provisions
  • Review the information security provisions and vulnerabilities of external cloud platforms, applications and suppliers
  • Understand threat intelligence, next generation antivirus and malware trends
  • Implement and support an ISO27001 certified Information Security Management System
  • Design and coordinate a business and disaster recovery plan during a cyber crisis
  • Design and implement consistent security audits into regular working practices

Find out how we can help you

We understand that due diligence, corporate investigations and protection services can be sensitive and complex matters, and we take steps to ensure that all of our clients’ information is kept strictly confidential.

By filling out your brief details, you can take the first step towards getting the answers you need.

We will respond to your inquiry as soon as possible and look forward to working with you.