hi@fortis-dpc.com | 03333 22 10 11
ISO/IEC 27001 formally specifies an Information Security Management System (ISMS), a suite of activities concerning the management of information risks We are able to offer a full range of ISO 27001 services to help you on your certification journey. ISO 27001...
BS EN ISO 14001 puts your environmental management system at the heart of your business' operations. In order to help meet environmental regulations, improve efficiency and environmental performance. This standard outlines the most up-to-date specifications for...
We are able to offer a full range of ISO 14001 services to help you on your certification journey and become compliant to the standard. ISO 14001:2015 is an international standard that specifies the requirements for an Environmental Management System ISO 14001...
Are you thinking about implementing an ISMS to ISO 27001? Do you need help in preparing for ISO 27001 for the first time? Do you require an internal audit as your annual anniversary approaches? What is ISO 27001? ISO/IEC 27001 formally specifies an Information...
GDPR and POPI - MUST SOUTH AFRICANS COMPLY? The EU’s General Data Protection Regulation (GDPR) took effect on 25 May 2018 – as heralded by the million-or-so “We’ve changed our Privacy Policy” messages we all received at the time and continue to do so. Whilst...
We’re here to help you create added value for your clients and prospects As a client of the HR Dept we know how hard you work. We also know that we talk to the same people and are often asked where the GPDR resources pack should be kept. We always say, "with...
To get your business moving forward, you need your visitors to contact you What is tracked is managed. Have you started tracking your personal data usage? This brings focus to your practical step towards achieving GDPR compliance. In order to take your first steps...
The EU's Court of Justice has just invalidated the "Privacy Shield" data sharing system between the EU and the US, because of overreaching US surveillance. Privacy Shield ruled invalid after hearing. Schrems argued that there were insufficient safeguards in place and...
Commission conducting ‘preparatory work’ should ECJ invalidate privacy shield The European Commission is preparing for the eventuality that the European Court of Justice (ECJ) may invalidate the EU-US data transfer agreement know as the Privacy Shield. The agreement...
With the arrival of South Africa's new privacy law, POPIA, we have developed a series of services to help you become compliant to the new regulation. We have built or services around the eight principles of the regulation. Accountability - as the data processor you...
South Africa's new data privacy law and what it means for you South Africa's Protection of Personal Information Act, POPIA is now law. This is good news for South African citizens and residents as the aim of the legislation is to protect their personally identifiable...
Protection of Personal Information Act On 24th June 2020, the Republic of South Africa passed into law the final part of the Protection of Personal Information Act. The South African Protection of Personal Information Act has finally come into force. Now this is good...
Many organisations may not realise how the GDPR affects them and how they handle data. Sports clubs and associations are typical of the type of organisation that can run into trouble if they are not careful. This article explains what sports clubs need to do to comply...
Staff and contractor training on GDPR is vitally important if a business is to remain compliant to the regulation. Since the arrival of the GDPR in May of 2018, all types of training courses have come and gone. Some have claimed to be official and certified. However,...
DPIAs will help to determine the most effective way an organisation can comply with the data protection legislation. A DPIA will help to identify any risks to the processing of the data. The DPIA helps to put measures in place to mitigate these risks. If the...
Many organisations have contracts in place with third parties for the supply of goods and services. Some of these contracts may rely on processing personal data of employees, for instance, the outsourcing of PAYE. If this is the case, these contractors, as data...
The lockdown is all but at an end in England. Many businesses reopened on 4th July, with the government allowing pubs, restaurants, cinemas, museums and hotels to reopen. Part of the conditions attached to this are that pubs will collect your personal data. The...
Privacy notices are an important part of your compliance work. Your privacy notice will explain to the audience how data protection principles are applied in your business and how personal data is processed. A privacy notice is published whilst a Privacy Policy is an...