GDPR Critical Friend
Critical Friend as a Service gives you piece of mind that you have access to experienced resource at the end of the telephone, without having to make costly investments in your own resources in times of need. It will also give you reductions on all other services and training offered by Risk Evolves.
A second opinion you can count on when things get tricky
When faced with questions, we all turn to a friend or a trusted advisor for advice and guidance. Someone that we can trust to help us when we are uncertain of what to do, but who will always tell us the truth, even if sometimes we don’t want to hear the answers. Risk Evolves is a ‘Critical Friend’ to many organisations. We are the ‘go to’ support who have helped define action plans, been supportive and occasionally we’ve held them to account if plans have been slipping by the wayside.
We recognise that for many organisations, implementing GDPR was only the beginning of the journey and that the real work now begins to ensure that it is imbedded into the business. There are times when you need either a second opinion or someone at the end of a phone to clarify an aspect of the GDPR regulation. No question is a silly question. We appreciate that researching for a solution or answer can be time consuming and confusing, we introduced this service as a mechanism to enable organisations to focus on their day jobs and use external expertise to investigate the solution.
The GDPR Critical Friend as a Service offering provides support to your organisation when you need it. We offer guidance and assistance in all areas of GDPR for example, when a customer has challenged or complained about how you use their data, you have received a data subject request, you are aware of a cyber incident or you just need someone to bounce a question to about data privacy or protection.
It will provide you with the reassurance that you have an expert to turn to; someone who can answer all those tricky questions or to step in and help you when you need more than just guidance. Your Critical Friend will provide advice to your staff; cooperate with the Information Commissioners Office (as required) and challenge you to ensure that actions are being completed in a thorough and robust manner.
What you get from the Risk Evolves GDPR Critical Friend Service
Onboarding Review: An initial review for us to better understand your organisation and any risks to compliance you may face. Your Critical Friend consultant will give an overview of the GDPR and advise those staff who process personal data of their obligations as per the regulation. A review will be undertaken of your current compliance and data policies in place. It takes 2 days to complete and will provide a report showing the high-level compliance against the legislation and an associated action plan.
Note: This is only required if you have not already completed a similar style review with us in the last 12 months
Experts at the end of a phone : Each month you have an allowance of up to 1 hours’ worth of calls that can be made to our team of experts. This can include general GDPR questions, follow up of outstanding actions from quarterly meetings, support for data subject rights requests, policy queries, supplier questionnaires, contract changes, the list goes on.
A Critical Friend Relationship: Understanding your business and working with you as a partner is the secret to our success. You will have a Critical Friend assigned for the duration of the contract. On a quarterly basis the Critical Friend will meet with you for an hour to review compliance status to share updates on GDPR and any other news from the world of Information Security.**
** Additional resource is available to cover holidays, sickness etc.