At AvISO, we recognise that our clients require additional compliance services outside of ISO Standards and as such we have recently introduced a DPO (Data Protection Officer) service to our list of services offered.

The GDPR (and Data Protection Act 2018) introduces a duty for an organisation to appoint a data protection officer (DPO) if you are a public authority or body, or if you carry out certain types of processing activities.  For organisations outside of this scope, some find it beneficial to appoint a DPO, or an individual with responsibility for data protection, to ensure compliance with relevant requirements and to maintain the highest standards of information privacy and accountability.

Our DPO Service can assist with the following areas:

• Conduct a gap analysis.
• monitoring internal compliance.
• inform and advise on your data protection obligations.
• Review and prepare relevant policies, procedures and mandatory documentation of processing activities.
• Data Mapping.
• Security requirements.
• Sub Processor relationship requirements.
• Incident Response Procedures and Business Continuity Plans.
• Review of marketing processes.
• Training and awareness requirements.
• provide advice regarding Data Protection Impact Assessments (DPIAs); and
• act as a contact point for data subjects and the Information Commissioner’s Office (ICO).

Our DPO service can be tailored to individual client needs and requirements, with varying levels of input and support.  

If you would like further information on how AvISO can help with DPO, please get in touch.