Data Protection
Standards Compliance

Our certified experts have extensive knowledge of the upcoming GDPR which will fundamentally transform the way businesses must perform with regards to cyber-security and data protection. We offer both legal and technical expertise, which is extremely rare in the current market. We will make sure your organisation is prepared with regards to all of the following factors:

• The timeline for implementation of the GDPR
• The bands of penalties and ranges for data breaches and how to avoid them
• The six data protection principles, lawfulness and consent and how to comply with them
• The rights of data subjects and how to respect them
• Data controllers and processors (what they are and how they are defined in your business)
• Data Protection by design and how to implement it
• Securing personal data and reporting data breaches
• Performing a data protection impact assessment
• The role of a Data Protection Officer and whether your business should appoint one
• The powers of supervisory authorities (which is the Information Commissioner’s Office in the UK)
• The role of the European Data Protection Board and how it impacts your business
• Transferring personal data outside the EU and what safeguards you must take if applicable.

Our thorough analysis will ensure that your organisation will avoid the colossal fines applied through this new legislation. We will also make sure that you are future-proofed against any later regulatory changes. You can only be sure with Cyber Major.

ISO 27001 is the international standard that describes best practice for an ISMS (Information Security Management System). It’s the one that is mandated for all types of reasons, including insurance requirements and government regulations. Our expert team has created an advanced cyber-security matrix which incorporates every single aspect of the regulation and uses it to analyse your organisation’s security from top to bottom. We are unique in having an entire system dedicated to implementing ISO 27001, which is the foundation of a modern cyber strategy.

The Data Protection Act controls how personal information can be used by organisations, businesses and the government. It contains express legal requirements for data protection that you must follow or be criminally liable. Moreover, large parts of this act will act as a reference for the Information Commissioner’s Office when they interpret the EU GDPR. It is vital that your organisation is fully in compliance with all aspects of the legislation. Our unique legal expertise and real-time analysis will allow you to see exactly where vital gaps in your compliance are and remedy them as soon as possible.

The National Institute for Standards and Technology is a regulatory body set up by the U.S Federal government. Both that government and other organisations all over the world follow its security guidelines, including its famous cyber-security framework. Our trained experts have extensive knowledge of this cyber framework and can cross-check our risk assessments against both the NIST framework and ISO 27001 to ensure the absolute best security controls are in place for your organisation.