Telephone +44(0)1524 64544
Email: info(at)

General Data Protection Regulation

In May of 2018 the landscape for data rights will undergo a significant change that will affect business worldwide who deal with any European citizen when the General Data Protection Regulation (GDPR) comes into effect.

This reperesents a further significant challenge to business and it is only the begining as further European legislation relating to electronic business (specifically e-commerce and electronic trade) is expected later in 2018; in the UK the Data Protection Bill (DPB) is navigating its way through the political system.

Addressing the concerns brought about by these changes to legislative rights can be challenging for any business. Many of those rights will have a fundemental place in how we also use security of electronic and physical data in our businesses. There are some very important questions that you should already be asking yourself:

  • Do you know where your data is?
  • Do you audit how it is collected, transmitted and archived?
  • Do you follow the changing best practices for securing your data?
  • Do you know how your data and systems are secured?
  • Do you know how to find out what those best practices are?

Having a strategy to deal with the GDPR may be out of the reach of many organisations. Have you started to address your solution to the upcoming legislative changes, how do they affect you?

Navigating the myraid of solutions may seem like a monumental task that will be impossible to complete. You need to act to make sure you are compliant with these lesiglations and to ensure your business processes are acceptable and affordable.

Shadowcat Systems has many years of experience in dealing with access and storing of data. We write about changes in data rules and we can help your organisation move towards a better data strategy. We can help you to do a strategic analysis of your organisation and identify the steps you need to take to mitigate risk and observe legislative requirements.

Shadowcat doesn't offer a single-solution or claim to make you any percentage compliant with legislation. In fact the GDPR makes specific statements about what you have to do as individual organisations, there is no list of compliance as that is determined by CoC authorities and NGO trade bodies.

At Shadowcat our mission isn't about insuring you against risk but evolving your organisation to observe best practice which should make you compliant with legislation.

We believe companies are individual and that our best role is to help them implement a solution that matches their business.

There is no one true way, we treat your organisation as an individual as that is how the legislation will see you.

Talk to us today and learn how you can move towards being compliant with the legislation that affects you.

GDPR and Security Blog Posts


All the current blog posts about the GDPR, DPB and incoming E-Data Regulations from the SC Team

GDPR and Small Organisations: Mark starts the discussion about the GDPR and small organisations like member organisations that are non-corporate.

Visit Small Organisations

GDPR and Cyber Essentials: What sort of thing should you be considering when you think of securing yourself?

Visit Cyber Essentials

GDPR and User Data Rights: The GDPR is an evolutionary rewrite of User Rights and you should be aware of what that means.

Visit Data Rights

GDPR and Data Management: How do we manage the data we collect, how do we find it?

Visit Data Management

GDPR - A Quick Note on Consent: Mark takes a short side trek and discusses the broad subject of consent and the GDPR

Visit Consent Pt. 01

GDPR - Information Governance: Mark looks at Encryption, Anonymisation, Data Storage and Access Rights as part of IG

Visit Information Governance

GDPR, Data and Software: Mark looks at the grey area of work and personal life and data access

Visit Data and Software

GDPR, Data Controllers: Mark looks at how the GDPR defines a data controller

Visit Data Controller

GDPR, Data Processors: Mark looks at how the GDPR defines a data processor

Visit Data Processors

GDPR, Data Protection Officer: Mark answers the question, do I need to appoint a DPO?

Visit DPO?