What is Safpro doing about GDPR?

Companies must be compliant with the GDPR as soon as it comes into force on the 25th of May 2018 – there is no grace period. With this in mind we thought it would be useful to inform our customers of the measures we are taking to comply with GDPR.

Safpro is taking GDPR very seriously and key members of staff have attended courses on GDPR implementation. Currently we are doing all the data mapping, so we are looking at all areas of the business as to how personal information is coming in, how it is being stored and where it is going to:

GDPR

Personal data coming in

We are analysing all forms of how we are obtaining personal data, making sure we have consent from the provider to hold the data. This includes information obtained from our website making sure that consent is being given to hold personal data.

Storing personal data

We are looking at all areas in the business where sensitive information is being stored and what we are doing to make sure it is secure:

- Customer Card Details – we are in the process of setting up a paperless secure banking system to enter the card details straight onto so that they are untraceable.

- Emails with sensitive information on – we are making sure that as many emails get deleted as soon as possible and will be scheduling mass disposing of emails once they reach a certain age.

- IT Security – apart from emails, our main IT system is the primary source where we keep any personal contact details. We are looking at systems to ensure maximum security with all our IT systems if in the event of anyone trying to hack into our systems.

- Printed Data – we try to be as paperless as we can be. Anything that is printed off either gets disposed of confidentially or documented securely in our filing system.

Where personal data is going to

- Information about our customers which is needed by our 3rd party parcel carriers – we are asking them these questions and will be getting contracts set up to make sure the highest confidentiality and security is being performed handling our customers data.

- Sensitive information held by 3rd party companies – again, we are asking them these questions and will be getting contracts set up to make sure the highest confidentiality and security is being performed handling our customers data.

- Safpro Delivery Drivers – any information our delivery drivers need to carry out their job, is treated with respect. All delivery notes copies get returned Safpro and documented into our filing system which is stored securely.