GDPR Compliance Statement

Security Watchdog current GDPR stance

  • We know why, and how to get Candidate consent for processing.
  • We know what data we hold, where it came from, where it goes within our organisation, who it’s shared with and what we do with it.
  • We seek prior authorisation before any data is shared.
  • We actively purge our data, through contractual and operational terms
  • We manage Personal data related risks using a defined process, and have effective processes to identify, report, manage and resolve any data breaches.
  • We have an established process to respond to Subject Access requests, including amendment, transfer of data, withdrawal of consent, and erasure.
  • Our Data Protection Policy, our Information Security Policy, and our ISMS is established.
  • Our Data Protection Officer is in place.
  • Our Management support, and promote compliance with Data Protection Legislation.
  • Our Staff are trained on the GDPR, as well as annually assessed for Data Protection.

Our GDPR Focus aims to;

  • Update and detail this information centrally across all systems we maintain
  • Become less manual in our processing of Subject access requests
  • Further look to minimise the amount and type of data we collect, ‘shrink the data footprint’
  • Increase the frequency of internal audits and evaluations with the GDPR lens