The new EU General Data Protection Regulation (GDPR) comes into force on 25 May 2018 (including in the UK regardless of its decision to leave the EU) and will impact every organisation which holds or processes personal data. It will introduce new responsibilities, including the need to demonstrate compliance, more stringent enforcement and substantially increased penalties than the current Data Protection Act (DPA) which it will supersede.
Hoist UK is committed to high standards of information security, privacy and transparency. We place a high priority on protecting and managing data in accordance with accepted standards. The company will comply with applicable GDPR regulations when they take effect in 2018, including as a data processor, while also working closely with our customers and partners to meet contractual obligations for our procedures, products and services.
The company’s main area of focus in preparing for GDPR overseen by an internal cross-functional team to continue building on existing security and business continuity management systems and certifications, including ISO 9001 to ensure our compliance.
Hoist UK has a robust ISO-based Management System (ISMS) and to ensure compliance we will implement additional company-wide controls to meet GDPR requirements.
We have in place a multidisciplinary project team which, informed by a GDPR gap analysis assessment and specialist advice, has the following priorities:
Questions, comments and requests regarding this GDPR statement are welcomed and should be addressed to:
21 Tarran Way North
Tarran Way Industrial Estate
Or emailed to firstname.lastname@example.org