The EU General Data Protection Regulation (GDPR) and the Data Protection Act 2018 requires all public, private and voluntary sector organisations who collect, or store personal data, to not only achieve GDPR compliance but also to maintain that compliance as part of their framework of internal corporate controls. This places an ongoing compliance obligation which we at JALARO believe is best addressed by an annual one day “compliance check” audit.

To address this ongoing compliance requirement JALARO provides our exiting clients with a “fixed price” one day annual audit following ISO27001 audit principles with a structured report based on a red, amber, green risk status.
This enables clients to not only address those ongoing compliance risks that may have arisen during the previous 12 months, but also provide evidence, if required, to the Information Commissioner’s Office, or other interested party in their supply chain, that they are maintaining their focus upon data privacy as a core business requirement.