Products

Explore Our Customised Security Awareness Training and Human Risk Management Solutions - Equip your team with the essential skills to defend against modern cyber threats. Our platform offers everything from phishing simulations to comprehensive policy management, empowering your workforce to enhance security and ensure compliance effectively.

Security Awareness Automation

Schedule Your Annual Awareness Campaign In A Few Clicks

Phishing Simulation

Stop Phishing Attacks In Their Tracks With Award-Winning Phishing Software

eLearning Content

Cyber Security eLearning to Explore our Award-Winning eLearning Library, Tailored for Every Department

Compliance Management

Simplify Policy, Privacy, and Incident Management for Total Compliance

Industries

Explore the versatility of our solutions across diverse industries. From the dynamic tech sector to healthcare, delve into how our solutions are making waves across multiple sectors. 


Financial Services

Creating A First Line Of Defence For Financial Service Organisations

Enterprises

A Security Awareness Training Solution For Large Enterprises

Education Sector

Engaging Security Awareness Training For The Education Sector

Tech Industry

Transforming Security Awareness Training In The Tech Industry

Governments

A Go-To Security Awareness Solution For Governments

Remote Workers

Embed A Culture Of Security Awareness - Even At Home

Healthcare Workers

See Our Tailored Security Awareness For Healthcare Workers

NIS2 Compliance

Support Your Nis2 Compliance Requirements With Cyber Security Awareness Initiatives

Resources

From posters and policies to ultimate guides and case studies, our free awareness assets can be used to help improve cyber security awareness within your organisation.

Resources Overview
Cyber Security Awareness For Dummies

An Indispensable Resource For Creating A Culture Of Cyber Awareness

Ultimate Guide To Phishing

Educate Employees About How To Detect And Prevent Phishing Attacks

Anti Phishing Policy

Create A Security-Conscious Culture And Promote Awareness Of Cyber Security Threats

A-Z Cyber Security Terminology

A Glossary Of Must-Know Cyber Security Terms

Free Stuff

Download Our Free Awareness Assets To Improve Cyber Security Awareness In Your Organisation

Dummies Guide To Cyber Security Elearning

The Ultimate Guide To Implementing Effective Cyber Security Elearning

Free Awareness Posters

Download These Complimentary Posters To Enhance Employee Vigilance

Case Studies

Hear How We’re Helping Our Customers Drive Positive Behaviour In Their Organisations

Cyber Security Behavioural Maturity Model

Audit Your Awareness Training And Benchmark Your Organisation Against Best Practice

About

With 18+ years of experience in the Cyber Security and Compliance market, MetaCompliance provides an innovative solution for staff information security awareness and incident management automation. The MetaCompliance platform was created to meet customer needs for a single, comprehensive solution to manage the people risks surrounding Cyber Security, Data Protection and Compliance.

Why Choose Us

Learn Why Metacompliance Is The Trusted Partner For Security Awareness Training

Careers

Join Us and Make Cybersecurity Personal

Leadership Team

Meet the MetaCompliance Leadership Team

Employee Engagement Specialists

We Make It Easier To Engage Employees And Create a Culture of Cyber Awareness

MetaBlog

Stay informed about cyber awareness training topics and mitigate risk in your organisation.

The GDPR comes into force in 7 days – Are You Ready?

gdpr final blog

about the author

Share this post

The GDPR comes into force in 7 days

It’s hard to believe that after two years of preparation, the GDPR will officially come into effect this day next week. GDPR has been the buzzword on everyone’s lips for months now, and organisations across the world have been going through their data with a fine-tooth comb to make sure they are compliant with the new legislation.

Despite the two-year transition period and the wealth of GDPR information available, there are still businesses looking for guidance and advice on what they need to do to comply with the GDPR.

Regardless of where your company is located in the world, if you control, collect, or share any personal data belonging to EU citizens, you will need to be compliant with the GDPR.

 To ensure your business is on the right track to GDPR compliance, you can follow the below steps:

1. Become Aware – Identify potential areas that could cause compliance problems under the GDPR.

2. Become Accountable – Make an inventory of all the personal data your organisation holds.

3. Communicate with Staff & Service Users –  Review your current data privacy notices alerting individuals to the collection of their data. Identify gaps between the level of data collection and processing your business engages in.

4. Personal Privacy Rights – Review your procedures to ensure they cover all the rights of individuals including how to delete personal data or provide data electronically.

5. How will Access Requests Change? –  Review and update your procedures and plan how your organisation will handle requests within the new timescales. All requests must be made within one month.

6. What is meant by ‘Legal Basis’ – Look at the different types of data processing you carry out and identify your legal basis for doing this and document it. This is very important when consent is relied upon as the sole legal basis for processing data.

7. Using Customer Consent as grounds to process data –  If you use customer consent when recording personal data, you need to review how you seek, obtain and record that consent, and assess whether you need to make any changes.

8. Processing Children’s Data – The GDPR will introduce a range of special protections to safeguard children’s data. If your organisation processes the data of underage subjects, you will need to make sure you have the adequate systems in place to verify individual ages and gain consent from guardians.

9. Reporting Data Breaches – Ensure you have the right procedures in place to detect, report and investigate a personal data breach. The GDPR requires that organisations disclose any personal data breaches to the relevant supervisory authority within 72 hours of detection.

10. Data Protection Impact Assessments (DPIA) and Data Protection by Design and Default – A DPIA is the process of considering the potential impact that a project or initiative might have on the privacy of an individual. It allows organisations to identify potential privacy issues and find a way to mitigate them.

11. Data Protection Officers – The GDPR requires some organisations to designate a Data Protection Officer (DPO). These organisations will include public authorities and organisations that monitor data subjects or process sensitive personal data on a large scale.

12. International Organisations and the GDPR – The GDPR includes a provision that will assist organisations that operate in different EU member states. Multinational organisations will be entitled to deal with one Data Protection Authority, referred to as a Lead Supervisory Authority (LSA) which will act as their single regulating body in the country where they are predominantly established.

 If you would like more information on how your organisation can improve its approach to GDPR compliance, click here, to find out how MetaCompliance can help.

DISCLAIMER: The content and opinions within this blog are for information purposes only. They are not intended to constitute legal or other professional advice, and should not be relied on or treated as a substitute for specific advice relevant to particular circumstances, the Data Protection Act, or any other current or future legislation. MetaCompliance shall accept no responsibility for any errors, omissions or misleading statements, or for any loss which may arise from reliance on materials contained within this blog.

Other Articles on Cyber Security Awareness Training You Might Find Interesting