Henry Howard Finance Group is fully aware of the implementation of the General Data Protection Regulation (GDPR), which comes into effect on 25 May 2018. Henry Howard Finance Group is working to fully understand the impact this will have on the various parts of its business, both internally (i.e. in terms of data security and record keeping) and externally with information sharing with our service providers and Finance partners.
How Henry Howard Finance Group is dealing with GDPR
All Henry Howard Finance Group processes and data are undergoing a Data Privacy Impact Assessment to ensure that when personal data is used, this is done in a defined and controlled manner that does not infringe on the rights of individuals.
It is not expected that this procedure will result in any significant changes to Henry Howard Finance Group’s business and data processes, but this will enable us to establish and maintain detailed records of the processing and the bases on which we process personal data.
Technology and security
Henry Howard Finance Group is aware that protecting personal data is crucial and this protection can be achieved by design, which will promote privacy and compliance through the data lifecycle, including by only collecting data for clearly specified purposes whilst giving individuals the right to object.
Henry Howard Finance Group is implementing technologies which will allow it to more easily identify and tag sensitive or unnecessary personal data and protect that data, ensuring that it is not misused or moved outside of Henry Howard Finance Group’s network. In conjunction with this, Henry Howard Finance Group is reviewing its information security standards in line with its ISO 27001 accreditation.
Ready to respond
Henry Howard Finance Group is reviewing its processes, including business continuity, to ensure it can respond quickly and efficiently to any suspected incident, including security breaches, which could impact personal data.
Henry Howard Finance Group is also reviewing its processes for dealing with data subject requests, including requests for access to data and other requests that may be made considering GDPR.
Henry Howard Finance Group takes the protection of personal data and individuals’ rights extremely seriously. We are actively working to ensure that our business remains compliant with data protection laws when GDPR comes into effect and will be publishing further details of the steps we are taking soon.