GDPR Services Portfolio
We provide clients with expert advice on regulatory impacts around data management, including the General Data Protection Regulation (GDPR), National Information Security (NIS) Directive and the ePrivacy Regulation (ePR).
Our Services include:
GDPR Readiness Assessment
GDPR Programme Management
Hosted GDPR Registers
Personal Data Insight
Regulatory impacts on Emerging Technology
GDPR Readiness Assessment
We firmly believe that GDPR is a Business Issue and although many organisations will approach things from either a legal or technical perspective, the Ixium approach is driven from a risk based business oriented perspective that enables you to understand the scope of the challenge ahead in a language that makes sense.
The Ixium Readiness Assessment provides a 'short, sharp' 5 step approach that enables you to gain visibility of the scope of work that you need to undertake and a plan of how to get there.
Risk Appetite - By understanding your attitude to risk arising from GDPR, the programme can be tailored to suit. It is then possible to articulate the risks posed by GDPR.
Identify Personal Data Sets - By understanding the personal data that you manage and control across your organisation, we can develop an effective approach to GDPR.
Gap Analysis - Once the focus areas have been identified, using our risk based approach, we can map where your organisation is and where it needs to be for compliance, using a traditional a gap analysis.
Target Operating Model - In order to support the changes required, a high level target operating model will be developed, identifying roles & responsibilities, governance, processes and solutions.
Programme Plan - So as to allow you to control the way forward, we will provide you with a road map to follow in order to drive the changes required within your organisation to achieve compliance.
Given the evidence based nature of GDPR, recording what you do is not just good practice but mandated for some areas. As such Ixium have developed hosted registers that can be plugged into your environment to assist with the following:
Consent Register - where consent is the lawful basis for processing, a consent register must be in place and maintained. It has to be available to the Supervisory Authority on request.
Processing Register - GDPR requires that a register of processing activity be maintained that can be made available to the Supervisory Authority on request.
Breach Register - GDPR requires that a controller maintains a record of any personal data breaches that outlines the facts relating to a personal data breach, which will be available to the Supervisory Authority on request.
The above registers can be quickly and easily deployed within your organisation, providing you with the required capability across these areas.
Transformation Leadership >>
Digital Competency Framework >>
We package our consulting methodologies into a set of survey based online tools that your organisation can use, with our without our consulting services. Of course, we believe that our expertise adds value to the way our tools are used. So, to support your work, we offer virtual consulting support that can be consumed by the hour or more conventional on-site consulting. You choose what best suits your needs and budget.
The digital era has generated many opportunities. Its disruptive nature has revolutionised business models, driven multi-channel customer engagement and driven efficiency improvements. In parallel consumer demands for privacy are increasing. New technologies such as blockchain are emerging. Then to top it all, more rigorous EU data protection legislation has been introduced. The impact is a digital environment that is increasingly complex.
There are organisations that manage complex, digital change well. Others struggle. One of the key differences is the way in which digital working is embedded within the organisations. Together, the activities that combine to support digital working are what Ixium refer to as digital capability. We measure this using the 7 components of our Digital Improvement Framework (DIF).
Digital Maturity Assessment
As markets change and organisations build experience, digital capability evolves. This evolution is what we define as digital maturity. Our Digital Maturity Assessment (DMA) is a tool that allows organisations to assess the maturity of their digital capability. By using survey based data collection techniques we gain an understanding of how you currently operate across the 7 areas of our Digital Improvement Framework. Highlighting areas of weakness and strength, we work with you to identify areas for improvement and build a roadmap.
Blockchain Advisory Services
Blockchain is a technology that is expected to revolutionise asset-focused businesses. By digitising assets, securely transacting and providing detailed provenance it is possible to re-invent how contracts are executed, dis-intermediate brokers and streamline processes. The challenge for organisations is to understand the opportunity or threat this presents. Our goal is to help you understand and evaluate areas such as smart contracts, cryptocurrency, public & private blockchains, industry protocols, regulatory impacts, market futures and technology deployment. With our rounded business and technical understanding of blockchain we can help you develop a strategy that best suits your needs.
Personal Data Strategy
98% of organisations manage personal data. Nearly 80% of organisations collect information directly from individuals. Volumes of personal data being collected have exploded and will continue to grow at an unprecedented rate. Personal data is a source of innovation and competitiveness in the right hands. Yet, consumers are increasingly concerned about the security of their data. They are becoming more aware of their privacy. The time where personal data was surrendered without a thought are passing. Individuals are beginning to understand the value of their personal data. How will your organisation respond to these opportunities and threats? We believe that having a personal data strategy is imperative.
The introduction of the General Data Protection Regulation (GDPR) is a game changer. Providing opportunity and challenges to organisations. Get it right and trust can be built with customers, driving loyalty and increased revenue. Get it wrong, and you could be facing fines of up to €20m or 4% of global revenues.
GDPR is coming. Data protection is set to become a board level issue. The question is, are you ready for it?
In order to help you "Demystify the Regulation" and what it might mean for your organisation, we have developed some approaches and services to support you through this journey.
In Ixium, we believe that transformation is about enabling, driving and embedding new working practices to deliver organisational value. We see rigorous delivery of new operating models and technologies as key fundamentals in any transformation. Identifying the right strategy, communication and getting people to act is what delivers success. Whether it is customers, employees or suppliers, there needs to be alignment of purpose if transformation is to be successful. This is what our services deliver.
These services are targeted at helping you through all stages of digital and data protection transformation. Whether it is assisting your strategy development, stakeholder alignment or managing a transformation programme on your behalf, our people will bring relevant knowledge and experience to bear. We use our knowledge, tools and experience to help you de-risk your digital or data protection programme.
We talk about re-inventing the consulting model. However, at times, there is no substitute for experienced feet on the ground. We provide experienced people who can set up, lead and drive digital and data protection transformation or simply provide key insights at critical stages of the programme. The choice is yours. Our aim is to ensure your transformation is successfully delivered.
Digital Competency Framework
As organisations evolve, the competencies they need in-house change. It may be that much of your development capacity is outsourced, so which skills need to be developed? Do you have staff with suitable competencies? If not, how do you identify, manage and develop them? Our digital competency framework allows you to identify the target capabilities you need. You can then assess current competency levels of the team, identify any gaps and drive decisions about future structure. Once your target model has been identified, the tool can be used to monitor and manage individual and team competency development.
Digital Improvement Framework