GDPR Readiness Statement May 2018

Posted on the 16th May 2018

Dear Customer,

The European Union’s General Data Protection Regulation (GDPR) will come into force in May 2018, superseding the previous regulation adopted in 1995 which is unsuitable in serving our increasingly data driven world.

The legislation exists to promote best practice when it comes to the governance of information. It will give data subjects more control over their personal data, and support the free flow of data within the EU.

We are currently undergoing our GDPR readiness programme and plan to be compliant ahead of the enforcement date of 25th May 2018. Pure Innovations Limited is committed to complying with the GDPR framework:

  • Staff training and awareness – how GDPR will impact clients, employees and the supply chain.
  • Supplier management – we are underway with approaching all of our key suppliers requesting further details about their GDPR readiness and are working with them to ensure that both our data and our clients data is appropriately protected.
  • Pure Innovations Systems – ensuring we continue to operate under best practices, assess risk and consider privacy by design.
  • Individual rights – we are updating our processes allowing individuals (data subjects) to request detail of the data held about them and a process to remove this data if required.
  • Data mapping – continue to regularly risk assess our information assets.
  • Data retention – ensuring that data retention periods meet contractual and legal requirements.
  • Our documentation has been updated to reflect the current requirements of GDPR and will continue to evolve in line with the changing guidance coming out of the Information Commissioners Office:

Pure Innovations operate a Quality Management approach across the business, which includes Information Security Management; this is regularly audited to ensure compliance and that:

  • Information is protected against any unauthorised access.
  • Confidentiality, Integrity and Availability of information is assured.
  • Legislative and regulatory requirements are met.
  • Business continuity plans are developed, maintained and tested.
  • All employees receive appropriate Information Security training.
  • All actual or suspected information security breaches are thoroughly investigated.

Pure Innovations Limited takes a very serious and structured approach to maintaining our customer’s data and privacy. Our workplace has adopted a culture of continuous improvement that will allow us to adapt to any changes to GDPR during its infancy.

The data we hold is used solely for the purpose of delivering our services and is not shared with any third parties for other purposes such as direct marketing. The CEO and Senior Managers have all received GDPR readiness training and are happy to field any questions you may have – please direct any queries on this matter to fiona.harradine@pureinnovations.co.uk

Read more posts...

Employment: Working With The Works

Matt, a client with our employment team, has really been enjoying his placement at The Works. The company has been working with Pure for a year now and has provided multiple placements for our clients....

Posted 17 May 2018

Queen Elsa: A Magical Bank Holiday At Etherow

Barbecues, sunshine and a Disney queen: Etherow Park had just about everything this Bank Holiday weekend. The Visitor Centre was flooded with crowds waiting for a chance to meet Queen Elsa. It was almost as exciting...

Posted 09 May 2018