RSM firm: UK
RSM contact: Sheila Pancholi
Bringing RSM’s ideas and insight – the work we carried out
The review assessed their process with regards to the Data Protection legislation and the upcoming General Data Protection Regulation.
Our team conducted walk through testing of the existing data protection policies, procedures and processes and mapped data flows for the IT, Finance, HR, Compliance and Marketing functions. We also captured the nature of the data managed within the current process, including sharing of personal data with any third party organisations outside of the Society.
We prepared a concise report detailing gaps identified between current practices and the requirements stipulated under GDPR, their implications and our considered actions to mitigate the risk associated with matters identified.
Understanding our client – the benefits
Senior staff at the company gained an increased awareness of their data protection obligations going forward, and their respective roles in ensuring compliance is achieved and maintained.
With respect to the in-scope process, the Society was provided with a clear action plan to address the shortcomings identified during our fieldwork, in addition to the mapped data flows which they will maintain and update during business as usual processes.