You’ve sat in on data protection courses, classes and briefings. You’ve been told to ‘make sure you have the right consents’, ‘manage your processor relationships’, and more. But your to-do list is winding, and you’re still not sure what each task actually needs from you. Despite all of the data protection guidance you’ve received, you’re still asking: “But what must I do?“. Here’s the answer: You must get a data privacy framework.

Ask Michalsons for a data privacy framework or data protection compliance framework

A data privacy framework (or data protection compliance framework) is a way of setting out and monitoring every action that your organisation has to take to comply with data protection law. Michalsons has built a data privacy framework that lists these actions in short, understandable, and above all auditable pieces.

So that you always know exactly what to do.

Why a data privacy framework?

All data protection laws require or recommend a data privacy framework, but none explain just quite what it looks like. It’s like you’ve been told to “draw a map” to an island you’ve never been to, and have only ever heard stories about. This leaves you rudderless – knowing broadly what is required of you to be compliant, but not exactly sure how to get there. You want something that sets out what you need to do, step by step, like a guide or a checklist, but far more comprehensive.

Your ideal data privacy framework needs to:

  • Set out the actions you need to take to be data protection compliant;
  • Help you track or monitor your compliance with these actions; and
  • Be easy to read and follow.

With a framework like this, you can take action, follow up on actions taken, and prove this all to regulators.

How can we help you

Michalsons has built a privacy framework that breaks down every obligation flowing from specific data protection laws in a way that is easy to understand, track and action. The framework offers:

  • Explicit and implicit actions – Each obligation is broken down into every explicit and implicit action flowing from it, giving you a comprehensive guide of the specific steps you need to take to ensure compliance;
  • Single-sentences – Each action is summarised into a single line item, helping you to digest what you have to do easily and at a glance;
  • Auditable controls – Each action is paired with the various auditable controls available to you to meet them, showing you where you can streamline your efforts;
  • Tracking questions – Each action is followed by a list of implementation questions, helping you to track the adequacy and effectiveness of that control over time.

Our framework can be used as anything from a simple checklist, to a comprehensive project guide, to an audit working paper. With it, you will always know how to answer the question, “But what must I do?

We will provide you with a copy of our comprehensive data privacy framework, customised to your needs, laws or regulations. This works best where you have not yet built or implemented a structured framework of auditable actions or controls, and want something simple to understand and engage with.

Choose this option where you want us to provide you with our data privacy framework.

We will review the data privacy framework that you have built or implemented against our own framework and industry best practice. This works best where you have built and implemented your own structured framework of auditable actions or controls, and want us to check that it meets what we believe is most important to your organisation based on our experience and industry best practice.

Choose this option where you want us to review your data privacy framework.

Our experience

Michalsons has worked with clients of all sizes to build and maintain structured data protection projects since before most modern privacy laws had been enacted. We know the language well, and how to decipher what each obligation actually requires of you. This lets us build a privacy framework that you can follow as easily as a reading a map.

Our clients

Michalsons has provide compliance frameworks of various types and focus areas to clients in a wide range of sectors, including IT, telecommunications, marketing, manufacturing, insurance and more.

We pride ourselves on making our guidance practical for the reader, so that you will be in the best position to make the right decision for you, when it counts.

How you benefit

With our data privacy framework, you will:

  • Simplicity – understand exactly what you need to do, by seeing each action laid out in a way that is simple, brief and practical;
  • Track – track and prove what you’ve done and how it meets your obligations, by asking the right questions at and after implementation;
  • Money – avoid spending money on solutions that are outside of your budget or resources, by getting a manual framework that is quick to follow and easy to use;
  • Risk – lower your risk of non-compliance, by seeing everything you need to do in one place.