Support Services

Trust

We will act as your named Data Protection Officer in order to support both internal and external queries.

Support

We will provide guidance and support should any breaches occur, including liaision with the Information Commissioner's Office (ICO)

Reassurance

We will provide subject matter knowledge to support your projects and initiatives either through DPIAs or ad-hoc queries.

Outsourced Data Protection Officer/Manager:

Using our experience across various sectors and handling a range of Data Protection related matters, not only will you get a DPO role covered but also gain access to a trusted, critical friend. We want to be more than just a voice at the end of the phone so that we can add real value to your organisation and your Data Protection compliance. 

Below we have outlined the various elements of the DPO service consists of. Each element starts from an established framework and can be tailored to meet your specific needs.

As part of the service we will provide you with template policies and procedures that should be implemented as part of the terms of the service. We will run through all of the terms and service levels with you before we look to agree and start working with you.

Get in touch below for a more tailored quotation based on your needs and how the DPO role can best benefit your organisation.

Other Support Services:

Between DPOs or is your DPO away for a period? Ensure that you have the cover you need for that period with our interim DPO service. 

The interim DPO service includes:

  • Named Data Protection Officer with 12+ years’ experience, registered with the ICO 
  • Additional Named Deputy Data Protection Officer
  • Data Breach support
  • Expert advice whenever you need it
  • Advice, assurance, and guidance on Data Protection Impact Assessments 
  • Yearly data protection Audit and Risk Assessment 
  • Co-operation with the ICO on behalf of the organisation
  • Ongoing monitoring of compliance to data protection laws relevant to the industry 
  • Raising awareness of data protection within organisations via monthly staff bulletins. 

Additional inclusions if required:

  • Compiling of record of processing activities, including the legal bases for processing data 
  • Compiling and management of a risk register for the organisation including advice, recommendations, and mitigation 
  • Gap analysis 
  • Recommendations for actions required to fulfil data subjects’ rights
  • Management of data protection impact assessments
  • Recommendations on revised compliance policies and processes
  • Information security recommendations
  • Named Information Governance Manager with years of experience
  • Support onsite and offsite to deal with all Information Governance matters
  • Execute IG reviews  ensuring these are completed as part of project management processes, third party tender processes, new supplier onboarding and due diligence exercises on suppliers
  • Write bespoke policies and procedures for the organisation where they do not exist
  • Maintain Comprehensive records of all IG activities being conducted by the organisation and ensure these reflect any changes to business processes over the course of time. This includes updating the Record of Processing Activities (ROPA)
  • Maintain a flexible and scalable breach management capability within the organisation to meet the compliance requirements
  • Inform and advise staff on matters IG related, including legislation and regulations as defined by the DPM
  • Promote a strong and positive information handling culture 
  • Deliver an ongoing programme of training, highlighting the importance of information handling
  • Act as the first point of contact for all IG enquires
  • Perform a yearly IG Audit and Risk Assessment 
  • Co-operate with the ICO on behalf of the organisation if required
  • Named Records Manager with years of experience
  • Support onsite and offsite to deal with all Records Management matters
  • Execute record reviews  ensuring these are completed as part of project management processes, third party tender processes, new supplier onboarding and due diligence exercises on suppliers
  • Write bespoke policies and procedures for the organisation where they do not exist
  • Maintain Comprehensive records of all RM activities being conducted by the organisation and ensure these reflect any changes to business processes over the course of time. This includes updating the Record of Processing Activities (ROPA)
  • Maintain a flexible and scalable breach management capability within the organisation to meet the compliance requirements
  • Inform and advise staff on matters RM related, including legislation and regulations as defined by the Records Manager
  • Promote a strong and positive information handling culture 
  • Deliver an ongoing programme of training, highlighting the importance of information handling
  • Act as the first point of contact for all RM enquires
  • Perform a yearly RM Audit and Risk Assessment 
  • Co-operate with the ICO on behalf of the organisation if required

What clients say about us:

Get in touch!

Pssst!

We’ll only use this data to liaise with you about your query. Once we’re working together, it will form part of your arragement with us. Read more here

Phone: + 44 7970 317446
Email: info@lighthouseig.com
MON-FRI 09:00 - 19:00, SAT-SUN CLOSED