The General Data Protection Regulation (GDPR) comes into effect on 25th May 2018 and Data Protection Officers (DPOs) will be at the core of this new legal and compliance framework for many organisations. A recent survey showed nearly 40% of organisations have already appointed a DPO to oversee their compliance project indicating the prospect of a ‘war for talent’ may be on the horizon.
Alistair Sergeant, CEO of Purple stated “We advocate trust, privacy and security as a cornerstone for customer delight in the digital economy. With recognition that having a set of good policies and processes is never enough on its own, we are now offering a DPO-as-a-service to clients seeking to be at a gold standard of compliance with the GDPR without them having to compete in what will fast become a challenging DPO labour market.”
Purple have a proven track record and a wealth of experience across Cyber Security, Governance, Risk & Compliance and Business Intelligence, and the new DPOaaS compliments their existing services and will form a key component of Purple’s World Class Data Governance services.
Under the GDPR, a DPO must be appointed where a business or organisation is:
- A Public Authority
- Processing large amounts of sensitive personal data (e.g. insurers, healthcare providers, etc.)
- Regularly monitoring individuals (e.g. profiling by big data companies, loyalty brand companies, online retail companies, etc.)
Even if your organisation does not fall under one of these categories you are encouraged to appoint a DPO on a voluntary basis.
Sergeant continued “the GDPR allows you to fill the role of a DPO using an external service provider. Outsourcing your DPO requirements to Purple spares you the challenges and expense of recruiting a full time employee and retaining knowledge with individuals who may be in huge demand and at risk of being poached as the demand for good DPOs sharpens”.
Purple state their DPO service will serve as an independent data protection expert for organisations, fully compliant with the legislation as set out under the GDPR, with the added benefit of contributing best practice and privacy by design coming from the experience of this market leading consultancy.
More about Purple:
Purple has supported a number organisations such as the Institute of Directors, Copyright Licensing Agency and Aston Scott on their journey to GDPR compliancy, and now look forward to further serving organisations around GDPR through the launch of DPO as a service.
For further information on this service please call us on 0203 376 7447 or view further information about Purple’s GDPR services here