Home About Books Contact Log in

Contact us...

+44 (0) 208 133 0242

Industry Standards for Security and Privacy

Independent specialist review of your privacy and security controls

Alignment with Industry Standards

At DataGRC, we are experience in using leading data protection, privacy and information security standards.

This helps clients to align with their peers, using well recognised and tested frameworks.

Contact us to discuss how we can use these standards to help your business.

Technical GDPR_Assessment Training Change

DataGRC Data Protection Framework

Developed through client engagements and incorporating a range of industry standards, the DataGRC Data Protection Framework provides a broad coverage of requirements for the EU General Data Protection Act 2018 (GDPR), UK Privacy and Electronic Communication Regulations 2003 (PECR) and UK Data Protection Act 2018 (DPA). The assessment consists of 77 controls, in 14 categories:
  1. Organisation
  2. Policies
  3. Training
  4. Data Mapping
  5. Lawful basis
  6. Retention
  7. Impact assessment
  8. Security
  9. Privacy Notices
  10. Supply Chain
  11. International
  12. Privacy Operations
  13. Breach Management
  14. Assurance

Completion of the assessment provides clear guidance to senior leadership teams around levels of compliance and opportunities for improvement. Function specific staff can also use the assessment to drive and monitor remediation activities.

BS10012 PIMS Data Protection

This privacy framework includes:

ISO 27001

This information security management system (ISMS) includes:

Companies can be certified under IAF/UKAS accredited schemes.

ISO 27002

This security control code of practise includes:

Cyber Essentials

This cyber security control framework includes:

NIST Framework

This cyber security control framework includes:



Contact Us to discuss your requirements

+44 (0) 208 133 0242