With only three weeks to go until the deadline for implementing GDPR we, like most business, are finalising the details of our documentation and, more crucially, making sure that our infrastructure is fully compliant.
It seems like a long journey is coming to an end. We first became aware of the new legislation about a year ago and took the decision to employ a consultant, a former colleague with extensive experience of information governance/security in the healthcare industry, to guide us through the process. After many meetings, some rewriting of our existing Information Security Management System, security testing, improvements to the Coaching Management System, deletion of old data, conversations with customers and coaches, we are finally reaching the end of the process.......yet it is never really the end; security is one of the fastest moving areas of IT and we continually work to ensure that our systems, and hence your data, remain secure and compliant.